Information Security Governance and Risk Specialist

3 days ago

Gurugram, India Pinkerton Full time

Job Description

Responsibilities

- Represent Pinkerton's core values of integrity, vigilance, and excellence.
- Embody the core values of Pinkerton which are integrity, vigilance, and Champion the governance, risk, and compliance (GRC) initiatives, focusing specifically on information security across the global enterprise.
- Design and sustain rigorous InfoSec policies and controls to preempt security violations and protect against breaches and incidents.
- Oversee the creation and ongoing management of documentation within the IT Governance, Risk & Compliance domain.
- Lead the enforcement of Security Assurance protocols, including Vulnerability Assessment and Penetration Testing (VAPT), and Application Security standards.
- Formulate and conduct comprehensive security audits and process validation for enterprise.
- Periodically review Security Architecture and configurations to ensure they meet or exceed industry best practices.
- Carry out continuous monitoring and maintenance of all aspects of Network Security, End User Computing (EUC) Security, and Data Security.
- Proactively identify information security risks and implement solutions to enhance the organization's security stature.
- Assess security activities and reports to mitigate potential InfoSec incidents
- All other duties, as assigned.

Qualifications

- Bachelor's degree in Information Technology, Computer Science, or related
- At least 7-9 years of experience in Information Technology, with a minimum of 5 years focused on InfoSec or IT risk governance.
- Professional certifications such as CISA, ISO/IEC 27001 Lead Auditor, ITIL, Certified Risk and Information Systems Control (CRISC), or Certified Risk and Compliance Management Professional (CRCMP) are highly desirable.

Competencies:

- Expert knowledge of IT Governance, Risk & Compliance as related to information security.
- Experience implementing and managing Information Security programs such as Data Loss Prevention, Incident and Event Management, Threat Analysis, and Response.
- Clear understanding of ISMS (ISO/IEC 27001), Risk Management (ISO 31000), and cloud-based security measures.
- Familiarity with Business Continuity Planning & Disaster Recovery, as well as data protection regulations such as GDPR and DPDP.
- Proven track record of conducting Internal IT Audits and performing thorough root-cause.

Working Conditions:

With or withoutreasonable accommodation,requiresthephysicalandmentalcapacity toperformeffectivelyallessential functions. In addition to other demands, the demands of the job include:

- Regular computer usage.
- Frequent sitting, standing, and/or walking.
- Travel, as required.
- Mustundergoandmeet company standardsforbackgroundandreferencechecks,drugtesting,andbehavioural selection survey.
- Maintaincomposureindealing with authorities, executives,clients,staff,andthepublic occasionallyunder conditions of urgency and in pressure situations.
- Exposure to sensitive and confidential
- Abilitytohandle multipletasks
- Must be able to see, hear, speak, and write clearly in order to communicate with employees and/or
- Manualdexterity requiredforoccasionalreaching andlifting of small objectsandoperating office equipment.
- Closeanddistancevisionandabilityto adjust.

  • Information Security Management

    2 weeks ago

    Gurugram, India IIRIS Consulting Pvt. Ltd. Full time

    IIRIS is hiring VP/Sr. VP – Information Security (Gurgaon). We're looking for an experienced leader with 15+ years in Cyber Security, Technology Risk Assessment, and IT Governance, with proven expertise in driving business growth and leading high-performing teams. Certifications like CISSP/CISM/CRISC are highly preferred. Responsibilities: Develop and...

  • Chief Information Security Officer

    2 weeks ago

    Gurugram, India OfBusiness Full time

    Job DescriptionAs theChief Information Security Officer (CISO),you will be responsible for defining and executingOXYZOsenterprise-wide information security strategy. You will oversee cybersecurity, risk management, governance, and compliance, ensuring the protection of organizational data, systems, and infrastructure. As a key member of the executive...

  • Information Security

    1 week ago

    Gurugram, Haryana, India CIGNEX Datamatics Full time

    **Location** : Gurgaon/Noida(Hybrid work twice a week from the office) **Technology** : Information Security, ISO 27001, HIPAA, Third Party Risk Management **Work Mode: Hybrid(2 days WFO)** **Role: Information Security Analyst** **JD**: **Professional** - Excellent knowledge about NIST cyber security framework, ISO27001 security domains, processes and...

  • AM / DM - Information Security

    1 week ago

    Gurugram, India Dr Lal PathLabs Full time

    Job Description Role & responsibilities - Management of VAPT (Vulnerability Assessment & Penetration Testing) by ensuring timely scheduling of the VAPT across Infra and application environment and tracking timely closure of the vulnerabilities, work with developers and the testers to reduce the IT technical risks. Report the progress to the management. -...

  • Information Security Officer

    2 weeks ago

    Gurugram, India Next Gen Paper Solutions Full time

    What you'll do We are seeking a highly skilled and motivated Information Security Executive to join our team. The ideal candidate will have in-depth knowledge of ISO 27001, ISO 27701, ISO 27002, ISO 27005, GDPR 2016, and DPDP Act 2023. This role involves preparing and maintaining security policies, processes, and procedures, conducting internal audits, and...

  • Information Protection Lead

    18 hours ago

    Gurugram, India ZS Full time

    Information Protection Lead (Data Governance) ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, our most valuable asset is our people. Here you’ll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients,...

  • Information Technology Security Specialist

    1 week ago

    Gurugram, India Bridgexcel Full time

    Job DescriptionWe are looking for a candidate having a minimum of 6 and a maximum of 10 years of experience as IT Security Specialist for one of our NBFC clients in the Gurgaon location. Role DescriptionWe are looking for a proactive, detail-oriented Security Operations Specialist to support our CISO team in a regulated NBFC environment. This role is...

  • Information Technology Security Specialist

    1 week ago

    Gurugram, India Bridgexcel Full time

    Job DescriptionWe are looking for a candidate having a minimum of 6 and a maximum of 10 years of experience as IT Security Specialist for one of our NBFC clients in the Gurgaon location. Role DescriptionWe are looking for a proactive, detail-oriented Security Operations Specialist to support our CISO team in a regulated NBFC environment. This role is...

  • Information Security with a leading NBFC

    17 hours ago

    Gurugram, India Skill Ventory Full time

    Roles and Responsibilities Key Responsibilities: Learns about business initiatives, products, and attack surfaces to drive relevant security detections Architect, and deploy security solutions, and tools for Application and Public Cloud Security. Cross-functionally working with peers in Information Security, IT and Engineering Research and evaluate...

  • Information Security with a leading NBFC

    12 hours ago

    Gurugram, India Skill Ventory Full time

    Roles and Responsibilities Key Responsibilities: Learns about business initiatives, products, and attack surfaces to drive relevant security detections Architect, and deploy security solutions, and tools for Application and Public Cloud Security. Cross-functionally working with peers in Information Security, IT and Engineering Research and...