Cybersecurity Strategist

5 days ago

Ahmedabad, Gujarat, India IGNOSIS Full time

Company Overview:

Ignosis is a pioneering FinTech company dedicated to transforming the BFSI sector with cutting-edge data intelligence and automation solutions. Backed by reputable investors, we empower financial institutions with hyper-personalization, democratized credit, and innovative technologies.

Job Overview:

This role requires an experienced security analyst to support Governance, Risk, and Compliance activities, ensuring smooth execution of cybersecurity initiatives. You will be responsible for third-party risk assessments, IT & cybersecurity risk management, and cloud governance, maintaining compliance with industry frameworks like NIST CSF and ISO 27001.

Key Responsibilities:

  • Developing and implementing the company's information security strategy.
  • Protecting company data, intellectual property, and technology assets from cyber threats.
  • Creating and enforcing security policies, procedures, and protocols aligning with business goals and regulatory requirements.
  • Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.
  • Maintaining compliance with industry standards and regulations.
  • Managing security audits, compliance assessments, incident response processes, and investigating security breaches.
  • Collaborating with cross-functional teams to integrate security measures into IT and business operations.
  • Developing and maintaining a comprehensive security program including cyber defense, data protection, and security operations.
  • Conducting risk assessments, identifying vulnerabilities, and prioritizing remediation efforts to reduce risk exposure.
  • Overseeing security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.
  • Managing the security architecture, tools, and technologies deployed across the organization's IT infrastructure.
  • Coordinating with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.
  • Monitoring security metrics and reporting on the organization's security posture to executive leadership.
  • Leading security awareness training programs for employees to promote a culture of cybersecurity.
  • Staying updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.