Sr. Information Security Manager
1 week ago
Sr. Information Security ManagerJob Description
Job Title – Information Security ManagerJob Location - BangaloreIn this role, you have the opportunity toAs a Senior Information Security Manager, you will be responsible for developing, implementing and monitoring astrategic, comprehensive IT security program while ensuring compliance with regulatory requirements, andmitigating risks to the organization's information assets.
Information Security Manager will provide the vision andleadership necessary to manage the risk to the platform assigned and will ensure business alignment, effectivegovernance, system and infrastructure availability, integrity and confidentiality.
Key Responsibilities:
Information Security Strategy:
- Develop and execute a strategic information security plan aligned with organizational objectives.
- Establish and maintain policies, standards, and procedures to ensure the confidentiality, integrity, andavailability of healthcare information
Risk Management:
- Identify and assess information security risks, conducting regular risk assessments and vulnerabilityassessments.
- Develop and implement risk mitigation strategies and controls to protect against potential threats
Compliance and Standards:
- Ensure compliance with relevant healthcare regulations, such as HIPAA and other industry-specificstandards.
- Stay abreast of changes in regulatory requirements and update policies and procedures accordingly
Incident Response:
- Lead the development and execution of incident response plans.
- Coordinate responses to security incidents, conduct post-incident analysis, and implement correctiveactions
Security Awareness and Training:
- Develop and deliver information security training programs for employees at all levels.
- Foster a culture of security awareness throughout the organization
Security Architecture:
- Design and implement a robust security architecture, incorporating the latest technologies and bestpractices.
- Collaborate with IT teams to ensure that security is integrated into system development and deploymentprocesses
Vendor Management:
- Evaluate and manage the security posture of third-party vendors and partners.
- Establish and maintain strong relationships with vendors to ensure the security of products and services.
- Threat modelling
- Security Testing (includes Dynamic and static Security Testing),
- Application Architecture review
- Information Security, Cloud & Network Security Architecture Review
- Define Security Use Cases
- Cloud Platform Security
- Data Lake Security
- Network Segmentation
- Cyber Security Framework Based on Industry Standard / Best Practices
- Microsoft Defender Implementation and Monitoring (Malware, EDR, ATP)
- Microsoft 365 Security
Designing of Conditional Access PolicyYou are responsible to:
- Develop and maintain robust security controls to protect Philips's business from security breaches/incidents.
- Deliver security demand from the business for security controls.
- Gather Security Management Framework and information security architectural requirements and drivecompliance of Enterprise IT systems against those requirements.
- Manage the risk profile of the IT systems and Suppliers
- Drive education and awareness activities across the platform and Enterprise IT.
- Evaluate new cybersecurity threats and IT trends and develop effective security controls.
- Establish regular governance with service owners to review security control status
- Liaison with Philips Information Security Office in driving the security Improvement Program
- Evaluate potential security breaches, coordinate response, and recommend corrective actions.
- Define and report on information security KPIs.
- Organize the preparation of the security status dashboards including presentation to executivemanagement.
- Analyze application end to end, prepare threat modelling (STRIDE, PASTA & DREAD) based on differentrisk scenarios and drive to fix those risks
- Cloud Security Management that includes Security Posture Management, Security Baseline, Codevalidation for Infra As a Code, Golden Image, Key Management, NACL, NSG, Native Security DashboardFirewall Management, Docker Security, Kubernetes security
- Prepare security use cases / functional requirements that new solutions need to meet. Validate thoserequirements are met when the solution is delivered
- Perform API Security testing that includes – API inventory, logging and monitoring, API Gateway Security,API Services Security.
- Exposure to network security which includes network segmentation, DDoS, Network Devices SecurityBaselining and monitoring, and firewall rules review for any deviation.
- Application Security – integration of security tooling with CI/CD pipeline, review of security reports andfollow-up to get them closed, DAST, SAST, Web Services Security, Security Focused Testing, Security CodeReview etc.
- Identify risk with authentication and authorization protocols, mitigate risks with legacy authentication,design conditional access policy
- Management of foundational security tooling e.g. tools like Defender, EDR, Vuln Mgmt, CMDB agent.
- Perform Defensive / Offensive assessment on IT environment/applications to simulate attacks from realthreat actors.
- Perform attack pattern analysis based on MITRE Attack framework, support solution development toaddress the pattern
- Define Data Protection roadmap and work with architecture to meet the requirement. Deploy dataprotection tools like CASB, DLP etc.
- Excellent English language communication skills, both verbal and written. Cross-cultural etiquette,customer-centric and collaborative mindset.
- Works autonomously within established procedures and practices.
- Good command of stakeholder management, judgement, conflict resolution, risk & mitigations.
- Provides leadership to the global team at strategic, tactical, and operational levels
- Maintains current knowledge of industry and regulatory trends and developments for enterprisetechnology.
- Specialized in several Security domains such as incident response, operational assessment of securityposture, and general security management.
- Thorough understanding of Security Management principles, Security governance principlesQualification
- Bachelor's or Master's degree in Information Technology and or commensurate experience in deliveringsecurity solutions.
- Overall Enterprise IT Security experience of 10 yrs or more.
- Security Certifications such as CISSP, CISM, CISA, CIPP etc. preferred.
Quality isright on the top of Philips leadership agenda and that means you have the unique opportunity to come in and havea recognized voice to drive and witness exciting, transformational changes.
You will be empowered to drive highquality,groundbreaking innovations with a globally recognized, premium brand behind you.Next to that arewarding career in Philips with an attractive packageWhy should you join Philips?Working at Philips is more than a job.
It's a calling to create a healthier society through meaningful work, focusedon improving 2.5 billion lives a year by delivering innovative solutions across the health continuum.
Our peopleexperience a variety of unexpected moments when their lives and careers come together in meaningful ways.Learn more by watching this video.
To find out more about what it's like working for Philips at a personal level, visit the Working at Philips page on ourcareer website, where you can read stories from our employee blog.
Once there,you can also learn about ourrecruitment process, or find answers to some of the frequently asked questions.-
Sr. Information Security Manager
1 week ago
Bengaluru, Karnataka, India Philips Full timeJOB DESCRIPTION Job Title Sr. Information Security Manager Job Description Job Title – Information Security Manager Job Location - Bangalore In this role, you have the opportunity toAs a Senior Information Security Manager, you will be responsible for developing, implementing and monitoring astrategic, comprehensive IT security program while...
-
Sr. Information Security Manager
3 days ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security ManagerJob Description#LIPHILINJob Title – Information Security Manager/LeadJob Location - BangaloreIn this role, you have the opportunity toAs a Senior Information Security Manager, you will be responsible for developing, implementing and monitoring astrategic, comprehensive IT security program while ensuring compliance...
-
Sr. Information Security Manager
4 weeks ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security ManagerJob DescriptionJob Title – Information Security ManagerJob Location - BangaloreIn this role, you have the opportunity toAs a Senior Information Security Manager, you will be responsible for developing, implementing and monitoring astrategic, comprehensive IT security program while ensuring compliance with regulatory...
-
Sr. Information Security Manager
1 month ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security ManagerJob DescriptionJob Title – Information Security ManagerJob Location - BangaloreIn this role, you have the opportunity toAs a Senior Information Security Manager, you will be responsible for developing, implementing and monitoring astrategic, comprehensive IT security program while ensuring compliance with regulatory...
-
Sr. Information Security Manager
3 weeks ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security ManagerJob DescriptionIn this role, you have the opportunity toInformation Security Lead will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security plan for platforms across Enterprise IT. Information Security Lead will provide the vision and leadership necessary to manage the risk...
-
Sr. Information Security Manager
1 month ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security ManagerJob DescriptionIn this role, you have the opportunity toInformation Security Lead will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security plan for platforms across Enterprise IT. Information Security Lead will provide the vision and leadership necessary to manage the risk...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Alliance University Full timeJob Description As the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Alliance University Full timeJob DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...
-
Sr. Information Security Lead
4 weeks ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security LeadJob DescriptionPhilips is a global leader in health technology, committed to improving billions of lives worldwide and striving to make the world healthier and more sustainable through innovation. Driven by the vision of a better tomorrow.But it's not just what we do, it's who we are. We are 80,000, wonderfully unique...
-
Sr. Information Security Lead
1 month ago
Bengaluru, Karnataka, India Philips Full timeJob TitleSr. Information Security LeadJob DescriptionPhilips is a global leader in health technology, committed to improving billions of lives worldwide and striving to make the world healthier and more sustainable through innovation. Driven by the vision of a better tomorrow.But it's not just what we do, it's who we are. We are 80,000, wonderfully unique...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Morae Full timePOSITION OVERVIEWThisInformation Security GRC Expert – Associate Managercontributes to Morae success byimplementing, and maintaining people, process and technology-oriented policies, procedures, andcontrols to ensure ongoing security and compliance of Morae's innovative technology solutions and information assets.As a part of highly skilled Information...
-
Sr. Security Analyst
1 week ago
Bengaluru, Karnataka, India OpenText Full timeOPENTEXT OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Barracuda Full timeReq ID Come Join Our Passionate Team At Barracuda, we make the world a safer place. We believe every business deserves access to cloud-enabled, enterprise-grade security solutions that are easy to buy, deploy, and use. We protect email, networks, data and applications with innovative solutions that grow and adapt with our customers' journey. More than...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Barracuda Full timeReq IDCome Join Our Passionate Team At Barracuda, we make the world a safer place. We believe every business deserves access to cloud-enabled, enterprise-grade security solutions that are easy to buy, deploy, and use. We protect email, networks, data and applications with innovative solutions that grow and adapt with our customers' journey. More than 200,000...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Promaynov Advisory Services Pvt. Ltd Full timeLocation: Whitefield, BengaluruNo of years' experience required:3 to 6 yearsJob Role:Perform application threat modelling based on STRIDE/DREAD model, use C4 data model architecture to identify the trust boundaries and security gaps to create application risk profile and remediation recommendations.Advise Product Owners to manage their security risks...
-
Sr. Security Analyst
23 hours ago
Bengaluru, Karnataka, India opentext Full timeOPENTEXT OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Promaynaov Advisory Services Pvt Ltd Full timeLocation : Whitefield, Bengaluru.No of year's experience required : 3 to 6 years.Job Role : Perform application threat modelling based on STRIDE/DREAD model, use C4 data model architecture to identify the trust boundaries and security gaps to create application risk profile and remediation recommendations. Advise Product Owners to manage their security risks...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India American Express Full timeJoin Team Amex and Let's Lead the Way Together When you become part of Team Amex, you enter a global and diverse community committed to supporting customers, communities, and each other. At American Express, you will grow in a unique and meaningful career journey, with benefits, programs, and flexibility that cater to your personal and professional growth....
-
Sr. Analyst
1 week ago
Bengaluru, Karnataka, India Optiv Security Inc. Full timeThe Senior Threat Analyst will provide deep-level analysis for client investigations utilizing customer-provided data sources, audit, and monitoring tools at both the government and enterprise level. The Sr Threat Analyst will work closely with our Technology Engineers, Architects, and Threat Analysts to service customers.How You'll make an impactHigh level...
-
Sr. Analyst
1 week ago
Bengaluru, Karnataka, India Optiv Security Inc. Full timeThe Senior Threat Analyst will provide deep-level analysis for client investigations utilizing customer-provided data sources, audit, and monitoring tools at both the government and enterprise level. The Sr Threat Analyst will work closely with our Technology Engineers, Architects, and Threat Analysts to service customers.How You'll make an impact High...