Security Technologies Exposure ie Managing DLP, Log Mgmt, Endpoint security etc
Security Process Exposure like creation of polices / procedures / guidelines
Perform reviews of IT Process, Policies, and Procedures
Co-ordinate for Information Security audits and closure of audit findings with stakeholders
Implment compliance specific requirements across teams
Co-ordination for internal and external Vulnerability Assessment and Penetration test
Project management of deployments of File Integrity Manager and Log Manager
Assess compliance of company’s IT related policies, regulatory guidelines and international best practices
Follow-up with Auditee for status of audit recommendations till the closure on the basis of reports
BCP - Prepare report on findings during DR / BCP Drill test and highlights to higher management
Facilitate trainings on Information Security
Knowledge on Firewall, IPS and other security devices
Define, document, implements, maintain and improve information security policies & processes within organization
Customer satisfaction- Communication , Ensuring optimum security Compliance and SLA
Achieving 100% compliance with ISMS SLA defined and Process compliance relating to Infosec
Ability to liaison with delivery teams, business units and various internal support units
Ability to execute Information Security projects, hands on with security products, Exposure to SOC and other related technical areas like VA / PT engagements
Ability to comprehend and keep updated on latest trends"
Understanding of ISO 27001 : 2013 standard Requirements and ISO 27002 : 2013 Code of practice for information security management
Understanding ISO20000 : 2011 standard and able to comprehend Information security requirements relating to the standard
Conduct Gap Analysis for ISO 27001 : 2013 implementations by meeting with departments were in scope of ISMS.
Preparation of Policues / procedures & guidelines inline with standard
Prepare Risk Assessment and Risk Treatment Plan and driving remediation with solutioning
Participate in Internal / External Audits
Implementation policies and procedures including security controls for IT, HR, Business Process and physical security.
Conduct awareness training programs through various examples of attacks, frauds etc.
Ensuring large / time based security projects
Excellent written and verbal communication skills, interact will all stake holders at all levels in the organization