SMC - Assistant Manager - Cyber Security/Governance/Risk/Compliance
3 months ago
Overview of Role: The Asst. Manager - InfoSec GRC is responsible for assessing and documenting SMC compliance and risk. posture as they relate to its information assets.
The incumbent provide directions, coordinates and performs SMC security assessment functions and control testing. reporting and activities in accordance with SMC Internal Controls compliance, regulatory and departmental policy and procedures.
- The InfoSec GRC Asst. Manager updates and maintains control matrices and spreadsheets and provides. recommendations for management's consideration.
- This position ensures compliance with SMC internal controls, regulatory. and information security policies and procedures.
- The incumbent works with external audit firms, and regulatory agencies to. provide supportive documentation as applicable.
- The incumbent takes a lead role in ensuring the security of all protected. information collected, used, maintained, or released by SMC.
Duties and Responsibilities:.
- Perform other duties as assigned to ensure the smooth functioning of the department and maintain the. reputation of the organization as a viable business partner.
- Recommend programmatic and technical directions and operate with a high degree of independence in. matters relating to the investigation, impact, and analysis of security incidents, decisions regarding risk, and. measures for computer and network security.
- Lead the development and implementation of the organization-wide risk management function of the. information security program to ensure information security risks are identified and monitored.
- Internally assess, evaluate and make recommendations to management regarding the adequacy of the. security controls for the Company's information and technology systems.
- Evaluate vendor risk; participate in the vendor management process.
- Lead the organization-wide information security compliance program, ensuring IT activities, processes, and. procedures meet defined requirements, policies and regulations.
- Assist in the development and implementation of effective and reasonable policies and practices to secure. protected and sensitive data and ensure information security and compliance with relevant legislation and. legal interpretation and alignment with business objectives.
- Execute strategy for dealing with increasing number of audits, compliance checks and external assessment. processes from customers and external auditors relating to effective security practices, ISO 27001/2, SOC 2.
- Interacts in both oral and written communications with all levels of Company staff including; IT,. engineering,senior leadership, general counsel, auditors, customers, and technology vendors and. contractors, in matters related to information security.
- Work with customers, external auditors, and outside consultants as appropriate on required security. assessments and audits.
- Coordinate and track all information technology and security related audits including scope of audits,. parties involved, timelines, auditing agencies and outcomes.
- Work with auditors as appropriate to keep. audit focus in scope, maintain excellent relationships with audit entities and provide a consistent. perspective that continually puts the organization in its best light.
- Provide guidance, evaluation and advocacy on audit responses.
- Problem-Solving Skills.
- Must be able to assess computer hardware, software, and systems for security risks or violations and work. with company staff and technology vendors to recommend solutions.
- Must be able to assess the status of complex multi-location projects as well as identify and track appropriate corrective measures to resolve issues as they arise.
- Must have a strong customer service orientation and the ability to project that attitude to customers in remote locations.
- Manage the security awareness training program and strategies to address awareness and training for all stakeholders as well as technical solutions.
- Assist in the development and implementation of Business Continuity Planning and testing, Incident.
- Response and Disaster Recovery.
Qualifications:
- 6 plus years of advanced IT skills with a high level of information security experience and expertise. Knowledge of information security risk management frameworks and compliance practices, including ISO. 27005.
- Knowledge ofsecuring network technologies, client, and server operating systems.
- Ability to develop security standards and guidelines based on best practices and industry standards.
- Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
- Understanding of common security and privacy standards, regulations, and laws relating to a cloud software. development company (e. , SOC 2, ISO 27001/2, GDPR). Security awareness training.
Preferred Qualifications:
- Bachelor's degree in information technology or other related field.
- Skills in documenting risk and compliance activities.
- Desirable Information security related training or certifications such as ISO 27001, CISSP, CRISC, or CISA.
- Experience performing information security audits or risk assessments.
- Familiarity with security auditing processes.
- An understanding of policy development and dissemination.
-
SMC - Chief Information Security Officer
3 months ago
New Delhi, India SMC Global Securities Ltd Full timeAbout the Role:.- We are seeking an experienced and strategic-minded Chief Information Security Officer (CISO) to join our team at SMC Global.- As the CISO, you will be responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected.- You will lead the...
-
Cyber Security Risk Manager
1 month ago
Delhi NCR/Delhi/Noida/Greater Noida/Gurgaon/Gurugram, India Aviva Life Insurance Company India Limited Full timeJob SummaryThe Cyber Security Risk Manager will be responsible for articulating and reporting the risk profile of the Company from an information and cyber security perspective through ongoing reviews, assessments, checks and challenges, providing assurance on enforcement of the IS/CS policies that Company is using to protect the information assets. This...
-
Delhi, India Aviva India Full timePurpose:The jobholder is responsible for articulating and reporting the risk profile of the Company from an information and cyber security perspective through ongoing reviews, assessments, checks and challenges, providing assurance on enforcement of the IS/CS policies that Company is using to protect the information assets, provide specialist support to...
-
Cyber Security Trainer
3 months ago
Delhi District, Delhi, India Winnovation Education Services Pvt. Ltd. Full time**Job Profile**: Cyber Security Trainer **Job Location**: Delhi NCR, India **Salary**: Best in Industry **Experience**: Min 2+ Years **Employment**: Full-time **Position Overview**: We are seeking a highly skilled and knowledgeable cybersecurity Expert to join our team. As a cybersecurity trainer, you will work closely with our clients to assess their...
-
Cyber Security Analyst
2 months ago
delhi, India TAC Security Full timeCompany DescriptionTAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security manages over 5 million vulnerabilities. ESOF, recognized as Gartner's...
-
Cyber Security Analyst
2 months ago
Delhi, India TAC Security Full timeCompany Description TAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security manages over 5 million vulnerabilities. ESOF, recognized as...
-
Cyber security analyst
1 month ago
New Delhi, India Apraava Energy Full timeJob Purpose: This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are...
-
Cyber Security Trainer
3 weeks ago
Delhi, Delhi, India Craw Cyber Security Pvt Ltd Full timeGreat Cyber Security and penetration Testing Training Skills Must have Knowledge about in Ethical Hacking, Penetration Testing, Web Application Security. Good Knowledge of Certified Ethical Hacker v11. Knowledge on security tools like NMAP, Nessus, Metasploit, Wireshark, Burpsuite, Owasp-zap, Netsparker etc - Kali Linux - OWASP Top 10 - Penetration...
-
Cyber Security Solutions Expert
4 weeks ago
Delhi, Delhi, India Nikom Infrasolutions Pvt Ltd Full timeCyber Security Solutions Expert We are seeking a highly skilled Cyber Security Solutions Expert to join our team at Nikom InfraSolutions Pvt Ltd. As a key member of our sales team, you will be responsible for providing security solutions and subject matter expertise within sales campaigns. Main Responsibilities:Provide security solutions and subject matter...
-
Cyber Security Analyst
2 months ago
Delhi, India TAC Security Full timeCompany DescriptionTAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security manages over 5 million vulnerabilities. ESOF, recognized as Gartner's...
-
Cyber Security Analyst
2 months ago
delhi, India TAC Security Full timeCompany Description TAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security manages over 5 million vulnerabilities. ESOF, recognized as...
-
Cyber Security Analyst
2 months ago
new delhi, India Apraava Energy Full timeJob Purpose:This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are identified,...
-
Cyber Security Analyst
2 months ago
New Delhi, India Apraava Energy Full timeJob Purpose:This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are identified,...
-
Cyber Security Analyst
2 months ago
new delhi, India Apraava Energy Full timeJob Purpose: This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are identified,...
-
Cyber Security Analyst
1 month ago
new delhi, India Apraava Energy Full timeJob Purpose: This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are identified,...
-
Cyber Security Analyst
1 month ago
New Delhi, India Apraava Energy Full timeJob Purpose: This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are...
-
Cyber Security Analyst
2 months ago
New Delhi, India Apraava Energy Full timeJob Purpose:This position exists in order to ensure continuity of the overall Advanced Metering Infrastructure (AMI) deployment and O&M, in line with the contract requirement. It will also ensure that all information assets and systems under AMI project are protected, the exposures which may affect availability, integrity & confidentiality are identified,...
-
Security Governance Expert
5 days ago
Delhi, Delhi, India Room to Read Full timeJob Summary:We are seeking a highly skilled Security Governance Expert to join our team at Room to Read. The ideal candidate will have 5-7 years of experience in IT Security & GRC and a strong understanding of cloud security standards, including Azure/AWS/GCP.About Us:Room to Read is a global nonprofit organization dedicated to improving literacy and...
-
Cyber Security Risk Analyst
4 weeks ago
Mumbai/Bangalore/Delhi, India Corpjob Placement Services Full timeCyber Security Risk AnalystAs a Cyber Security Risk Analyst at Corpjob Placement Services, you will be responsible for assisting the functional manager in performing day-to-day security activities/operations. This includes analyzing problem statements, collaborating to define solutions, and executing them in accordance with defined processes and frameworks....
-
Software Engineering Leader for SMC Global
1 month ago
Delhi NCR/Noida/Greater Noida/Gurgaon/Gurugram/Delhi, India SMC Full timeAbout the RoleWe are seeking a skilled Software Engineering Leader to join SMC Global's engineering organization. As a hands-on people leader, you will be responsible for owning the charter of multiple backend web applications that drive significant revenue for our company.Your expertise in design, architecture, and people management will help us scale our...
