IT & Infosec Engineer - Security Risk Management
4 weeks ago
Responsibilities :
- Develop and finalize policies, procedures, and guidelines related to IT and Infosec domains in alignment with industry best practices (ISO 27001 and ITIL).
- Align internal IT and Infosec processes as per RBI IT and security guidelines.
- Assist IT and Infosec Team in defining the key metrics for management reporting.
- Develop cyber security standards, including incorporating industry practices and applicable compliance requirements.
- Maintain the security risk register and related policies.
- Maintain the inventory of IT vendors as per regulatory guidelines.
- Develop review checklists, and questionnaires, and manage evidence to assist the IT vendor risk management process.
- Perform 3rd party security due-diligence reviews and periodic vendor risk assessments to assess vendor compliance.
- Coordinate with external stakeholders and auditors for IT and infosec-related reviews.
- Coordinate for conducting periodic penetration testing exercises on in-scope applications and related infrastructure.
- Coordinate with stakeholders for timely closure of open risks.
- Assist in imparting security awareness training and executing phishing simulation exercises to employees.
- Assist IT and Infosec in gathering the metrics data and preparing management dashboards.
- Lead the periodic IT and Infosec governance review meetings and gather feedback for improvement.
- Assess the existing IT and Infosec processes and provide recommendations to improve.
- Identify opportunities for IT and Infosec governance automation and lead continuous compliance initiatives.
- Support cross-entity teams/group entities to mirror the best practices implemented at the parent entity.
- Develop templates for incident reporting and manage artifacts. Assist during incident investigation and collaborating with stakeholders.
Key Areas : ISO 27001 security governance, vendor security due-diligence, vendor security reviews, and assessment, preparation of security checklist, security awareness/phishing simulation, management dashboards, managing key metrics for IT and Infosec.
Requirements :
- Should have 5 - 7 years of experience in the information security domain and minimum should have 4 years in overall IT and Infosec governance-related activities.
- Must have sound knowledge in defining processes, developing policies, procedures, and guidelines, and preparing management reporting dashboards.
- Must have experience in guiding teams concerning RBI IT guidelines.
- Developing and implementing enterprise governance, risk, and compliance strategies and solutions.
- Ability to document and explain details concisely and understandably.
- Industry-recognized certificates relevant to the roles such as ITIL, and ISO 27001 are desired.
- Ability to lead complex, cross-functional projects, and problem-solving initiatives.
- Passionate about IT/information security and updating knowledge daily to support the organization.
- Candidates must have excellent verbal and written communication skills.
- Familiarity with industry standards and regulations including PCI, ISO27001 CIS, and NIST is desired.
- Candidates with BFSI experience will be preferred.
- Fair understanding of public cloud models (e. g. AWS, Google, Microsoft Azure) and their security : good to have - ISO 27001 ITIL.
Skills :
- The candidate should be a good team player.
- Should have good interpersonal skills.
- Good written communication skills including ability to develop process documentation and security guidelines.
- Ability to apply critical thinking and logic to a wide range of intellectual and practical problems.
- Ability to maintain composure under pressure and work calmly during an emergency.
- Ability to manage multiple tasks and schedules.
Location : Bangalore
-
Senior Staff InfoSec Engineer
2 months ago
Bangalore, Karnataka, India HeadPro Consulting LLP Full timeJob Title : Senior Staff InfoSec Engineer (OT/IOT Network)Location : BangaloreExp : 5 to 8 yearsMandatory skills:1. Need someone who have strong experience in Network Information security.2. Require a strong exposure of operations Technology like Design & System Architecture3. Candidates can share profile if they have worked on Manufacturing, Pharma, Bio...
-
Senior Staff InfoSec Engineer
3 weeks ago
Bangalore, Karnataka, India HeadPro Consulting LLP Full timeJob Title : Senior Staff InfoSec Engineer (OT/IOT Network)Location : BangaloreExp : 5 to 8 yearsMandatory skills:1. Need someone who have strong experience in Network Information security.2. Require a strong exposure of operations Technology like Design & System Architecture3. Candidates can share profile if they have worked on Manufacturing, Pharma, Bio...
-
Senior IT Security Analyst
3 weeks ago
Bangalore, Karnataka, India IT Full timeJob Overview :We are looking for an experienced IT Security Analyst with a strong background in vendor risk assessments, gap assessments, and information security audits. The ideal candidate will have at least 4 years of IT security experience and possess excellent communication skills. This role requires a proactive approach to identifying and mitigating...
-
Senior IT Security Analyst
2 months ago
Bangalore, Karnataka, India IT Full timeJob Overview :We are looking for an experienced IT Security Analyst with a strong background in vendor risk assessments, gap assessments, and information security audits. The ideal candidate will have at least 4 years of IT security experience and possess excellent communication skills. This role requires a proactive approach to identifying and mitigating...
-
Network Security Engineer
5 days ago
Bangalore, Karnataka, India Whitefield Careers Full timeMust Have Skill Sets : Design, Engineering, Configuring, troubleshooting of security, and routing services on all technologies, protocols and features below :- Fortinet (Fortigate Firewalls, Fortimanager).- General Security Protocols and technologies: Access control policies (ACLs, Security policies), Snort (IPS: Intrusion Prevention System, AMP:...
-
DevSecOps Manager
3 weeks ago
Bangalore, Karnataka, India Freelance Full timeJob Description :Business Requirements : - Provide oversight and experience with your understanding of Cloud services, DevOps/SecOps toolsets and platforms, Secure SDLC practices as well as monitoring and logging technologies. - Implement and integrate tools into our CI/CD pipelines that shift security left - Define and drive automation framework for Secure...
-
DevSecOps Manager
2 months ago
Bangalore, Karnataka, India Freelance Full timeJob Description :Business Requirements : - Provide oversight and experience with your understanding of Cloud services, DevOps/SecOps toolsets and platforms, Secure SDLC practices as well as monitoring and logging technologies. - Implement and integrate tools into our CI/CD pipelines that shift security left - Define and drive automation framework for Secure...
-
Director - Information Security
2 months ago
Bangalore, Karnataka, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile :- Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
3 weeks ago
Bangalore, Karnataka, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile :- Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Cyber Security Engineer
3 weeks ago
Bangalore, Karnataka, India IT Full timeJob Description : We are seeking a skilled Saviynt Implementer to join our team. The Saviynt Implementer will be responsible for configuring, customizing, and deploying the Saviynt platform to meet our clients' identity governance, access management, and cloud security needs. The ideal candidate will have a strong technical background, hands-on...
-
Cyber Security Engineer
2 months ago
Bangalore, Karnataka, India IT Full timeJob Description : We are seeking a skilled Saviynt Implementer to join our team. The Saviynt Implementer will be responsible for configuring, customizing, and deploying the Saviynt platform to meet our clients' identity governance, access management, and cloud security needs. The ideal candidate will have a strong technical background, hands-on...
-
Data Security Analyst
1 month ago
Bangalore, Karnataka, India IT Full timeJob Title : Data Security Specialist- .Experience Required : - 4+ years of experience in Data Security.Job Description : We are seeking a skilled Data Security Specialist with expertise in implementing and maintaining data security solutions. The ideal candidate will have hands-on experience with Varonis, Microsoft Data Loss Prevention (DLP), Insider Risk...
-
Data Security Analyst
3 weeks ago
Bangalore, Karnataka, India IT Full timeJob Title : Data Security Specialist- .Experience Required : - 4+ years of experience in Data Security.Job Description : We are seeking a skilled Data Security Specialist with expertise in implementing and maintaining data security solutions. The ideal candidate will have hands-on experience with Varonis, Microsoft Data Loss Prevention (DLP), Insider Risk...
-
IT Risk Manager
3 weeks ago
Bangalore, Karnataka, India TD Newton Full timeLevel : Sr. ConsultantTotal Experience : 5+ yearsWork Mode : Hybrid (3 days' work from office)Notice Period : Immediate-30 daysAs a Risk Manager you will identify risks to IT systems, infrastructure and computerized equipment, evaluate system architecture and identify controls needed to mitigate the risk. This includes performing an IT risk assessment...
-
IT Risk Manager
3 weeks ago
Bangalore, Karnataka, India TD Newton Full timeLevel : Sr. ConsultantTotal Experience : 5+ yearsWork Mode : Hybrid (3 days' work from office)Notice Period : Immediate-30 daysAs a Risk Manager you will identify risks to IT systems, infrastructure and computerized equipment, evaluate system architecture and identify controls needed to mitigate the risk. This includes performing an IT risk assessment...
-
TPRM Manager
3 weeks ago
Bangalore, Karnataka, India Yo HR Consultancy Full timeRole : TPRM ManagerExperience : 8 to 12yearLocation : BengaluruMust have :- TPRM- Vulnerability- Risk assessment- SOC Report InterpretationJob Description :Technical Skill Requirements :1. Expertise in IT internal audit, Information Security/cybersecurity, IT SOX, Third Party Risk Assessment Reporting e.g., SOC1, SOC 2.2. Relevant expertise on CSA STAR...
-
TPRM Manager
2 months ago
Bangalore, Karnataka, India Yo HR Consultancy Full timeRole : TPRM ManagerExperience : 8 to 12yearLocation : BengaluruMust have :- TPRM- Vulnerability- Risk assessment- SOC Report InterpretationJob Description :Technical Skill Requirements :1. Expertise in IT internal audit, Information Security/cybersecurity, IT SOX, Third Party Risk Assessment Reporting e.g., SOC1, SOC 2.2. Relevant expertise on CSA STAR...
-
Lead Infosec Engineer
2 months ago
Bangalore, Karnataka, India antal international network Full timeTHE ROLE :You will be responsible to build a culture of automation and platform design that integrates security as a shared responsibility throughout the entire IT and tech lifecycle and be part of the team that's responsible for vulnerability management in Information Security projects. You will develop a roadmap for a comprehensive information security...
-
Lead Infosec Engineer
3 weeks ago
Bangalore, Karnataka, India antal international network Full timeTHE ROLE :You will be responsible to build a culture of automation and platform design that integrates security as a shared responsibility throughout the entire IT and tech lifecycle and be part of the team that's responsible for vulnerability management in Information Security projects. You will develop a roadmap for a comprehensive information security...
-
Palo Alto Architect
4 weeks ago
Bangalore, Karnataka, India IT Full timeJob Summary :- 10+years experience.Network Security Design and Implementation :- Design and implement network security solutions using Palo Alto Networks technologies, including firewalls, VPNs, and endpoint protection.- Develop and maintain security architecture diagrams and documentation.- Ensure the scalability, robustness, and reliability of security...
