Information Security lead(security controls, risk assessment
1 week ago
Job Description:
Job Title: Infosec Lead Department: ITLevel/Designation Manager/Sr. Manager Position Type: Full Time Job Overview
This role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security standards and
relevance with industry security norms.
ROLE AND RESPONSIBILITIES Provide a bullet point list of the responsibilities and duties of this job. Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns with business objectives. Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts. Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves firm's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities. Defines and documents business process responsibilities and ownership of the controls in GRC tool. Schedules regular assessments and testing of effectiveness and efficiency of controls and creates GRC reports. Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting personal and client data assets. Performs and investigates internal and external information security risk and exceptions assessments. Assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks. Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. Assists other staff in the management and oversight of security program functions. Trains, guides, and acts as a resource on security assessment functions to other departments within the firm. Remains current on best practices and technological advancements and acts as the firm's resource for security assessment and regulatory compliance. QUALIFICATIONS AND EDUCATION REQUIREMENTS
Provide a bullet point list of the qualifications that are necessary for someone at this position.
• EDUCATION LEVEL
BE/ Btech / MCA/ Graduation in computer science or similar stream
• EXPERIENCE
10-12 years relevant experience
? Knowledge of –
1. Applicable information security certification, management, governance, and compliance principles, practices, laws, rules, and regulations
2. Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols
3. Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration
4. Information systems auditing, monitoring, controlling, and assessment process
5. Risk assessment, Incident response and management methodology.
• SPECIFIC SKILLS-
Developing and implementing enterprise governance, risk, and compliance strategy and solutions
Researching and locating information related to internal and external organizations using online and other sources
Security project management and planning while maintaining confidentiality
Working with diverse academic and cultural ethnic backgrounds of retainer, staff, consultant, third party providers
• PERSONAL CHARACTERISTICS-
Work independently and prioritize multiple tasks and adapt to needed changes
Effectively communicate technical issues to diverse audiences, both in writing and verbally
Apply a risk-based approach to planning, executing, and reporting on audit engagements and auditing process
Evaluate and update and/or revise program materials. Handle sensitive and confidential matters, situations, and data. Understand and follow broad and complex instructions
Interact positively with users, firm management, vendor, and regulatory agencies in order to enhance effectiveness and to promote quality service
Comprehend technical language and to confer, analyze and write in an objective, lucid manner.
Remain calm under high pressure/difficult situations.
• CERTIFICATIONS
CISA, CISM, ISO 27001 certification, desired
• LICENSES
None
Key Skills :
Management Governance Security Controls Risk Assessment Security Lead Risk Assessment Framework Implementation Of Security Controls Grc-
Bengaluru, Karnataka, India Paradise Placement Consultancy Full timeJob Description:Job Title:Infosec LeadDepartment:ITLevel/DesignationManager/Sr. ManagerPosition Type:Full TimeJob OverviewThis role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security standards andrelevance with industry...
-
Information Security Risk
1 week ago
Bengaluru, Karnataka, India Cepheid Full timeThe Information Security Risk & Controls Architect is responsible for managing and maintaining Cepheid's Information Security Risk Management Processes. This role will help define the approach, tools, and processes, which assess and protects the organization's most sensitive and critical information assets.:***: This position is part of the Information...
-
Information Security Risk Assessor
1 week ago
Bengaluru, Karnataka, India eliterecruitments Full timeInformation Security Risk Assessor (ISRA):We are looking for an Information Security Risk Assessor (ISRA) to join our client's team. In this role, you will play a crucial part in securing our projects by design through the delivery of Information Security Assurance Plans based on ISO Risk Management principles.Location - Pune/BangaloreExperience - 4 To 10...
-
Bengaluru, Karnataka, India Whatfix Full timePosition Summary: The Security Compliance Specialist is responsible for managing all compliance related activities within the Whatfix platform and supporting other global compliance related initiatives. Compliance activities will include coordinating internal and external assessments/audits, contributing to policy and standards updates, developing...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security Risk Analyst
1 week ago
Bengaluru, Karnataka, India Take-Two Interactive Software Full timeAbout the PositionJob Title:Information Security Risk AnalystWho We Are:Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially successful entertainment...
-
Security Assessment
1 week ago
Bengaluru, Karnataka, India NETSACH GLOBAL Full timeGreetings from Netsach - A Cyber Security Company.Currently we are hiring Security Assessment & Compliance Specialist with 3-6yrs. This is a full-time onsite opportunity in Dubai.Job Title: Security Assessment & Compliance SpecialistExp: 3-6yrsJob Location: Dubai OnsiteJob Type: FulltimeInterested Job OverviewThe Security Threat Assessment & Compliance...
-
Information Security Risk Analyst
3 days ago
Bengaluru, Karnataka, India Take-Two Interactive Full timeJob Title: Information Security Risk AnalystWho We Are:Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially successful entertainment experiences,...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Information Security Lead
4 weeks ago
Bengaluru, Karnataka, India Philips Full timeJob TitleInformation Security LeadJob DescriptionPhilips is a global leader in health technology, committed to improving billions of lives worldwide and striving to make the world healthier and more sustainable through innovation. Driven by the vision of a better tomorrow.But it's not just what we do, it's who we are. We are 80,000, wonderfully unique...
-
Information Security Lead
1 month ago
Bengaluru, Karnataka, India Philips Full timeJob TitleInformation Security LeadJob DescriptionPhilips is a global leader in health technology, committed to improving billions of lives worldwide and striving to make the world healthier and more sustainable through innovation. Driven by the vision of a better tomorrow.But it's not just what we do, it's who we are. We are 80,000, wonderfully unique...
-
Security Risk Management
1 week ago
Bengaluru, Karnataka, India Rubrik Full timeJob Summary Information Security - Who We Are The Information Security (InfoSec) organization advances the overall state of security at Rubrik through critical initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect...
-
Associate - Information Security
1 week ago
Bengaluru, Karnataka, India Navi Full timeJob description :About the role :Navi is looking for an Associate Information Security to be part of the information security program at the Group Level ensuring cybersecurity compliance to the requirements put forth by regulators - RBI, IRDAI & SEBI.Key responsibilities :As Navi operates in the regulatory space, this role requires interpreting and helping...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Intraedge Technologies Ltd. Full timeAmex: Event Manager Information Security in Bengaluru (Upendra)As an Event Manager in Information Security at Amex, you will play a crucial role in ensuring that security remains a top priority for the business, partners, and customers. In a world where cyber-attacks are on the rise and compliance is a must, your responsibility will be to stay ahead of...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeYou Lead the Way. We've Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeYou Lead the Way. We've Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a...
-
Information Security Analyst
1 week ago
Bengaluru, Karnataka, India Virtusa Full timeInformation Security Analyst - CREQ188067 Description P1-C3-STSInformation Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what is next to protect our brand and future. The IT Risk Assessment Operational Risk Event...
-
Security Lead Technology Risk
1 month ago
Bengaluru, Karnataka, India timesjobs Full timeJob Summary: This role will undertake and deliver security projects effectively and efficiently with enhanced business requirements as well as ensuring compliance to security standards and policies.This role provides operational and conformance checking of information security implemented. The role will undertake specific security tasks directly and will...
-
Security Lead Technology Risk
4 weeks ago
Bengaluru, Karnataka, India timesjobs Full timeJob Summary: This role will undertake and deliver security projects effectively and efficiently with enhanced business requirements as well as ensuring compliance to security standards and policies.This role provides operational and conformance checking of information security implemented. The role will undertake specific security tasks directly and will...
