Information Security lead(security controls, risk assessment
3 weeks ago
Job Title:
Infosec Lead
Department:
ITLevel/Designation
Manager/Sr. Manager
Position Type:
Full Time
Job OverviewThis role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security standards andrelevance with industry security norms.ROLE AND RESPONSIBILITIES
Provide a bullet point list of the responsibilities and duties of this job.Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns with business objectives.Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reportingmetrics, dashboards, and evidence artifacts.Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves firm’s security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.Defines and documents business process responsibilities and ownership of the controls in GRC tool. Schedules regular assessments and testing of effectiveness and efficiency of controls and creates GRC reports.Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting personal and client data assets.Performs and investigates internal and external information security risk and exceptions assessments. Assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks.Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities.Assists other staff in the management and oversight of security program functions.Trains, guides, and acts as a resource on security assessment functions to other departments within the firm.Remains current on best practices and technological advancements and acts as the firm’s resource for security assessment and regulatory compliance.QUALIFICATIONS AND EDUCATION REQUIREMENTSProvide a bullet point list of the qualifications that are necessary for someone at this position. • EDUCATION LEVELBE/ Btech / MCA/ Graduation in computer science or similar stream• EXPERIENCE10-12 years relevant experience? Knowledge of –1. Applicable information security certification, management, governance, and compliance principles, practices, laws, rules, and regulations2. Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols3. Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration4. Information systems auditing, monitoring, controlling, and assessment process5. Risk assessment, Incident response and management methodology.• SPECIFIC SKILLS-Developing and implementing enterprise governance, risk, and compliance strategy and solutionsResearching and locating information related to internal and external organizations using online and other sourcesSecurity project management and planning while maintaining confidentialityWorking with diverse academic and cultural ethnic backgrounds of retainer, staff, consultant, third party providers• PERSONAL CHARACTERISTICS-Work independently and prioritize multiple tasks and adapt to needed changesEffectively communicate technical issues to diverse audiences, both in writing and verballyApply a risk-based approach to planning, executing, and reporting on audit engagements and auditing processEvaluate and update and/or revise program materials. Handle sensitive and confidential matters, situations, and data. Understand and follow broad and complex instructionsInteract positively with users, firm management, vendor, and regulatory agencies in order to enhance effectiveness and to promote quality serviceComprehend technical language and to confer, analyze and write in an objective, lucid manner.Remain calm under high pressure/difficult situations.• CERTIFICATIONSCISA, CISM, ISO 27001 certification, desired • LICENSESNoneKey Skills :
ManagementGovernanceSecurity ControlsRisk AssessmentSecurity LeadRisk Assessment FrameworkImplementation Of Security ControlsGrc
-
Risk Assessments
3 days ago
Bengaluru, India CrossRoad Solution Full time- As a part of the Operational Risk Governance Group (ORGG) Process Risk Self-Assessment (PRSA) Program within Global Risk & Compliance, you will contribute to developing and maintaining a global internal control framework and governing standards, capabilities, and risk assessment methodologies. Within the second line of defense, you provide effective...
-
Risk Assessments
1 week ago
Bengaluru, India CrossRoad Solution Full timeAs a part of the Operational Risk Governance Group (ORGG) Process Risk Self-Assessment (PRSA) Program within Global Risk & Compliance, you will contribute to developing and maintaining a global internal control framework and governing standards, capabilities, and risk assessment methodologies. Within the second line of defense, you provide effective...
-
Risk Assessments
1 week ago
Bengaluru, India CrossRoad Solution Full timeAs a part of the Operational Risk Governance Group (ORGG) Process Risk Self-Assessment (PRSA) Program within Global Risk & Compliance, you will contribute to developing and maintaining a global internal control framework and governing standards, capabilities, and risk assessment methodologies. Within the second line of defense, you provide effective...
-
Risk Assessments
1 week ago
Bengaluru, India CrossRoad Solution Full timeAs a part of the Operational Risk Governance Group (ORGG) Process Risk Self-Assessment (PRSA) Program within Global Risk & Compliance, you will contribute to developing and maintaining a globalinternal control framework and governing standards,capabilities, and risk assessment methodologies. Within the second line of defense, you provide effective challenge...
-
Global Security Risk Assessment and Security
4 weeks ago
Bengaluru, Karnataka, India Wipro Limited Full timeBengaluru, India - GSH - 3051710 **Job Description**: - Senior Manager - Global Security Risk and Intelligence, - Global Security Command Centre (GSCC) - Global Security Group (GSG), - Wipro, Bangalore - Overview - The Senior Manager - Global Security Risk and Intelligence, Global Security Command Centre (GSCC) will - be responsible for managing,...
-
Senior IT Security Analyst
2 weeks ago
Bengaluru, India IT Full timeJob Overview :We are looking for an experienced IT Security Analyst with a strong background in vendor risk assessments, gap assessments, and information security audits. The ideal candidate will have at least 4 years of IT security experience and possess excellent communication skills. This role requires a proactive approach to identifying and mitigating...
-
Information Security
3 weeks ago
Bengaluru, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security
4 weeks ago
Bengaluru, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security
3 weeks ago
Bengaluru, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Information Security
4 weeks ago
Bengaluru, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Analyst Information Security
12 hours ago
Bengaluru, India Infosys Full timeResponsibilities 1.Planning and execution of ISMS(Information Security Management Systems) audits – Audit scoping, logistics, audit preparedness, Statement Of Applicability(SOA) inputs for IBPM, ISMS control checklist2.Cross function liaising3.Risk Management- Risk Assessment for Delivery Centers, Functions, Enterprise level, New entities4.Policy...
-
Security Lead Technology Risk
1 day ago
Bengaluru, Karnataka, India timesjobs Full timeJob Summary: This role will undertake and deliver security projects effectively and efficiently with enhanced business requirements as well as ensuring compliance to security standards and policies.This role provides operational and conformance checking of information security implemented. The role will undertake specific security tasks directly and will...
-
Information Security Analyst
12 hours ago
Bengaluru, India Virtusa Full timeInformation Security Analyst - CREQ188067 Description P1-C3-STS Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what is next to protect our brand and future. The IT Risk Assessment Operational Risk...
-
Navi - Associate - Information Security
4 weeks ago
Bengaluru, India Navi Full timeJob description :About the role :Navi is looking for an Associate Information Security to be part of the information security program at the Group Level ensuring cybersecurity compliance to the requirements put forth by regulators - RBI, IRDAI & SEBI.Key responsibilities :As Navi operates in the regulatory space, this role requires interpreting and helping...
-
Information Security Manager
5 days ago
Bengaluru, India IntraEdge Full timeAmex: Event Manager - Information Security - Bengaluru (Upendra) Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what’s next to protect our brand and future. The IT Risk Assessment & Operational Risk...
-
Information Security Manager
5 days ago
Bengaluru, India IntraEdge Full timeAmex: Event Manager - Information Security - Bengaluru (Upendra)Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what’s next to protect our brand and future. The IT Risk Assessment & Operational Risk...
-
Information Security Manager
4 days ago
Bengaluru, India IntraEdge Full timeAmex: Event Manager - Information Security - Bengaluru (Upendra)Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what’s next to protect our brand and future. The IT Risk Assessment & Operational Risk...
-
Information Security
4 weeks ago
Bengaluru, India Thoucentric Full time**About us**: Thoucentric is a niche management consulting firm focused on helping organizations overcome business challenges, maximize growth & overall performance through effective problem solving, efficient people, process and technology solutioning, end to end execution and management. We have been certified **Great Place to Work **by AIM ** **and have...
-
Compliance Manager
3 weeks ago
Bengaluru, India LeadSquared Full timeLocation:BangaloreReports to:Director - ITPosition Overview:As an Information Security Compliance Manager at LeadSquared, you will play a critical role in overseeing and maintaining our information security compliance program. The ideal candidate will have at least8years of hands-on experience in managing compliance with ISO 27001, SOC 2, and HIPAA...
-
Cyber Security Intern
5 days ago
Bengaluru, Karnataka, India HKIT Security Solutions Full time**Job Title: Cybersecurity Intern** As a Cybersecurity Intern, you will work closely with our cybersecurity team to assist in various tasks related to ensuring the security and integrity of our organization's digital assets. You will gain hands-on experience in identifying and mitigating cyber threats, implementing security measures, and analyzing security...
