Information Security Engineer

2 months ago

Bengaluru, India Talent one Consulting Full time

Job Description

- Develop and finalize policies, procedures, and guidelines related to IT and Infosec domains in alignment with industry best practices (ISO 27001 , GDPR and SOC 2)

- Align internal IT and Infosec processes as per ISO 27001 and SOC 2 standards and security guidelines

- Assist in defining and reviewing the key metrics for management reporting

- Develop of cyber security standards, including incorporating industry practices and applicable compliance requirements

- Maintain the the security risk register and related policies

- Maintain the inventory of IT vendors as per regulatory guidelines.

- Develop review checklists, questionnaire, and manage evidences to assist the IT vendor risk management process

- Perform 3rd party security due-diligence reviews and periodic vendor risk assessments to assess vendor compliance.

- Coordinate with external stakeholders and auditors for IT and Infosec related reviews

- Coordinate for conducting periodic penetration testing exercises on in-scope applications and related infrastructure. Coordinate with stakeholders for timely closure of open risks.

- Assist in imparting security awareness training and executing phishing simulation exercises to employees.

- Assist IT and Infosec in gathering the metrics data and prepare management dashboards

- Lead the periodic IT and Infosec governance review meetings and gather feedback for improvement

- Assess the existing IT and Infosec processes and provide recommendations to improve

- Identify opportunities for IT and Infosec governance automation and lead the continuous compliance initiatives

- Support cross-entity teams/group entities to mirror the best practices implemented at the parent entity

- Develop templates for incident reporting and manage artifacts. Assist during incident investigation and collaborating with stakeholders.

- Audit Coordination:

- Coordinate and facilitate SOC 2 audits, acting as the primary point of contact for the external auditor.

- Gather evidence and documentation to demonstrate compliance with SOC 2 requirements.

- Address any audit findings and implement corrective actions.

Key Areas: SOC 2 Type 1 and Type 2, ISO 27001, GDPR ,security governance, vendor security due-diligence, vendor security reviews and assessment, preparation of security checklist, security awareness/phishing simulation, management dashboards, manage key metrics for IT and Infosec,

Certifications: good to have - CISSP, CISM, ISO 27001, or CISA (Knowledge and experience in SOC 2 is mandatory)

Experience :

- Should have 5 - 7 years of experience in information security domain and minimum should have 4 of years in overall IT and Infosec governance related activities.

- Must have sound knowledge in defining processes, developing policies, procedures, and guidelines, and preparing management reporting dashboards.

- Must have experience in guiding teams with respect to SOC 2 requirements

- Developing and implementing enterprise governance, risk, and compliance strategy and solutions

- Ability to document and explain details in a concise & understandable manner

- Industry recognized certificates relevant to the roles such as SOC 2, ISO 27001 are desired

- Ability to lead complex, cross-functional projects, and problem-solving initiatives.

- Passionate about IT/information security and update knowledge on daily basis to support the organization

- Candidates must have excellent verbal and written communication skills

- Familiarity with industry standards and regulations including PCI, ISO27001, SOC 2, GDPR, CIS, NIST is desired.

- Candidates from BFSI experience will be preferred

- Fair understanding of public cloud models (e.g. AWS, Google, Microsoft Azure) and their security implications

Skills :

- Candidate should be a good team player

- Should have good interpersonal skills

- Good written communication skills including ability to develop process documentation and security guidelines.

- Ability to apply critical thinking and logic to a wide range of intellectual and practical problems

- Ability to maintain composure under pressure and work calmly during an emergency

- Ability to manage multiple tasks and schedules

(ref:hirist.tech)

  • Information security engineer

    7 days ago

    Bengaluru, India LinkedIn Full time

    Linked In is the world’s largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day.We’re also committed to providing transformational opportunities for our own...

  • RSA - Application Security Engineer

    3 months ago

    Bengaluru, India RSA Security Full time

    RSA - Application Security Engineer (Location: Hybrid/ Remote India) RSA offers mission-driven security solutions that provide organizations with a unified approach to managing digital risk that hinges on integrated visibility, automated insights and coordinated actions. RSA solutions are designed to effectively detect and respond to advanced...

  • SISA Information Security

    2 weeks ago

    Bengaluru, India SISA Information Security Pvt Ltd Full time

    Job Description :Role & Responsibilities :Team Leadership :- Lead, mentor, and manage a team of vulnerability analysts, ensuring high performance and continuous development.- Allocate resources effectively to ensure timely delivery of services across multiple client projects.- Conduct regular performance reviews and provide feedback to team...

  • Senior Information Security Engineer

    1 month ago

    Bengaluru, Karnataka, India Head pro Full time

    Job Summary :Head pro is seeking a skilled Senior Staff Information Security Engineer to join our team. As a key member of our Information Security team, you will be responsible for executing the Information Security Program, Data Governance practices, and Privacy assurance. This role requires a strong understanding of security concepts, technical controls,...

  • Staff engineer, information security

    7 days ago

    Bengaluru, India LinkedIn Full time

    Linked In is the world’s largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We’re also committed to providing transformational opportunities for our...

  • Information Security Architect

    4 weeks ago

    Bengaluru, India Mercedes-Benz Full time

    Tätigkeitsbereich:IT / TelekommunikationFachabteilung:Security Architecture & GRCGesellschaft:Mercedes-Benz Research and Development India Private LimitedStandort:Mercedes-Benz Research and Development India, BangaloreStartdatum:sofortVeröffentlichungsdatum:..4Stellennummer:MER3BC9Arbeitszeit:Vollzeit BewerbenAufgaben Job Role: Information Security...

  • Director Information Security

    6 months ago

    Bengaluru, India American Express Full time

    You Lead the Way. We’ve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create...

  • Senior engineer, information security

    4 weeks ago

    Bengaluru, India LinkedIn Full time

    About LinkedinLinked In is the world’s largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We’re also committed to providing transformational...

  • Information Security Architect

    2 weeks ago

    Bengaluru, India Mazo Solutions Full time

    Job Summary:We are seeking an experiencedInformation Security Architectto lead and enhance our cybersecurity architecture and practices. The ideal candidate will bring deep technical expertise, practical experience in threat modeling, and a proactive approach to secure software and cloud platforms. This role requires a strong understanding of emerging...

  • Information Security Manager

    3 months ago

    Bengaluru, India AMEX Full time

    You Lead the Way. Weve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a...

  • Sr Information Security Engineer, Endpoint Security

    3 weeks ago

    Bengaluru, India ServiceNow Full time

    Job DescriptionTeam This position reports to the Senior Manager, Security Engineering. The Enterprise Security Engineering team targets building state-of-the-art technology that will help reduce the risk surrounding the sensitive assets of the company with the least impact possible on operations, acts as guidance and facilitator to the security operations...

  • Senior Information Security Engineer

    2 weeks ago

    Bengaluru, India WELLS FARGO BANK Full time

    About this role:Wells Fargo is seeking a Senior Information Security Engineer.We believe in the power of working together because great ideas can come from anyone. Through collaboration, any employee can have an impact and make a difference for the entire company. Explore opportunities with us for a career in a supportive environment where you can learn and...

  • Senior Information Security Engineer

    1 month ago

    Bengaluru, India WELLS FARGO BANK Full time

    About this role:Wells Fargo is seeking a Senior Information Security Engineer.We believe in the power of working together because great ideas can come from anyone. Through collaboration, any employee can have an impact and make a difference for the entire company. Explore opportunities with us for a career in a supportive environment where you can learn and...

  • Information Security Engineer

    6 months ago

    Bengaluru, India Applied Materials Full time

    Key Responsibilities Lead security incident response in a cross-functional collaboration environment driving toward incident resolution Develop IR initiatives that improve our capabilities to respond to and remediate security events faster Perform forensic analysis of digital information Validating the ingest of log sources and maintaining the flow of...

  • Information Security Architect

    2 weeks ago

    Bengaluru, India Mazo Solutions Full time

    Job Summary:We are seeking an experienced Information Security Architect to lead and enhance our cybersecurity architecture and practices. The ideal candidate will bring deep technical expertise, practical experience in threat modeling, and a proactive approach to secure software and cloud platforms. This role requires a strong understanding of emerging...

  • Sr Information Security Engineer

    2 months ago

    Bengaluru, India NETSACH GLOBAL Full time

    Greetings from Netsach - A Cyber Security Company.We are looking for a seasoned Senior Security Engineer with hands-on, well-rounded security background and experience in multiple domains. To be successful, the Security Consultant must be able to multi-task in a fast-paced and dynamic environment.Job Title: Senior Information Security EngineerExp:...

  • Manager - Information Security

    5 months ago

    Bengaluru, India Navi Full time

    About NaviNavi is one of the fastest-growing financial services companies in India providing Personal & Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navi's mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is dedicated...

  • Senior engineer, information security

    7 days ago

    Bengaluru, India LinkedIn Full time

    About LinkedinLinked In is the world’s largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We’re also committed to providing transformational...

  • Senior Information Security Engineer

    5 months ago

    Bengaluru, India Flexera Software India LLP Full time

    Flexera saves customers billions of dollars in wasted technology spend. A pioneer in Hybrid ITAM and FinOps, Flexera provides award-winning, data-oriented SaaS solutions for technology value optimization (TVO), enabling IT, finance, procurement and cloud teams to gain deep insights into cost optimization, compliance and risks for each business service....

  • Manager - information security

    1 month ago

    Bengaluru, India Navi Full time

    About NaviNavi is one of the fastest-growing financial services companies in India providing Personal & Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navi's mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is dedicated...