Lead engineer, information security

3 weeks ago

Gurgaon, India Acuity Knowledge Partners Full time

Acuity Knowledge Partners Acuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms.

Its global network of over 6,000 analysts and industry experts, combined with proprietary technology, supports more than 500 financial institutions and consulting companies to operate more efficiently and unlock their human capital, driving revenue higher and transforming operations.

Acuity is headquartered in London and operates from 10 locations worldwide.

The company fosters a diverse, equitable and inclusive work environment, nurturing talent, regardless of race, gender, ethnicity or sexual orientation.

Acuity was established as a separate business from Moody’s Corporation in 2019, following its acquisition by Equistone Partners Europe (Equistone).

In January 2023, funds advised by global private equity firm Permira acquired a majority stake in the business from Equistone, which remains invested as a minority shareholder.

For more information, visit Basic Information Position Title – Lead Engineer, Information Security Experience Level – 2 to 3 years Department - Information Security Location – Gurgaon Position reports to – Director Shift Timings - Gurgaon (Support Beijing), Work Shift 8:30am IST to 5:30pm IST Job Purpose By working with global clients, Acuity Knowledge Partners provides its employees the opportunity to gain valuable experience and to benchmark themselves against some of the finest institutions in the world.

We have a strong performance-driven culture, one that is entrepreneurial and fun to be part of.

Key Responsibilities This is a challenging position within the Acuity Information Security team, reporting up to Director, CISO.

Responsible to Run and maintain of ISO27001, conduct Internal Audit, Information security risk management, Cyber Security, BCMS and SOC 2 framework implementation and maintenance along with other relevant guidelines and regulations for the organization.

Provide an oversight and enforce Information Security controls to ensure information security Compliance & Assurance.

The candidate is very motivated and willing to take on challenges, able to multitask to succeed, and has the ability to work independently with minimal oversight.

Key Competencies Work with functional groups (HR, Compliance, IT & facilities, Client Accounts) in the validation of organizational security and maintain a process to ensure maintenance of organization’s ISO27001 certification along with risk management framework and BCMS requirements.

Conduct periodic internal ISMS audits and risk assessments to assess the adequacy of the security controls and provide recommendations.

Facilitate external audits for different industry certifications e.g.

ISO 27001, SOC2 audits, client audits.

Ensure coordination with IT team for implementing best industry practice for network, Cloud and Cyber security.

Work closely with other support function to implement best security controls w.r.t.

cyber/cloud and data security.

Identify and implement corrective action plan to address external / internal audit findings and updating statement of applicability.

Documentation of Security Policies, Standards, Guidelines & Standard Operating Procedures.

Coordinate with multiple teams for management and investigation of security incidents and perform root cause analysis.

Conduct periodic Security Awareness Training programs.

Develop, test and maintain business continuity and Disaster Recovery plans.

Ensure compliance to Regulatory compliance requirements applicable to the organization.

In- depth knowledge of Information Security risk and industry best practices.

Assists departments to ensure regulatory compliance in areas such as ISO: 27001, SOC II, GDPR and so on.

Coordinate with functional support groups and operational groups for generation of security metrics to track compliance.

Perform vendor risk assessments, maintain the process in the GRC tool.

Serve as a SME on cloud cyber risk for leading cloud platforms AWS, Azure/ office 365.1.

Lead cybersecurity controls testing across On-prem & Cloud Environment to determine control effectiveness and adherence to both internal cybersecurity policies and external requirements e.g.

Industry Certifications, Laws, Regulations and Contracts.

Develop and lead cyber risk Initiative as part of cloud transformation projects on AWS\Azure cloud services.

Design and develop cloud platform-specific security policies, standards, and procedures for management group and account/subscription management and configuration e.g.

azure policy, azure security center, AWS Infra Security, IAM control, firewall management, auditing and monitoring, DLP, security incident and event management, data protection, SSO and conditional access controls.

Ensure RFP responses and helping delivery team to meet contractual security requirements.

Bachelor’s Degree in Engineering or Equivalent area of study Relevant certifications such having CISSP, CISA, CISM, CCSP is an advantage, ISO 27001 LA/LI preferred.

Minimum 2 or 3 years’ of experience in Information Security, Risk Management and Business Continuity management in a corporate environment.

Excellent understanding of ISO27001, ISO 31000, Info Sec Risk Management, Cyber Security, BCMS and SOC 2 framework along with controls used for securing a business' computer networks and digital information.

Knowledge of cyber security frameworks Working experience of best industry practices of Vulnerability management; Cloud Security; Cyber Security and network security.

Ability to identify, observe and analyze potential information security risks and develop strategies for preventing threats and quickly addressing breaches Good understanding with regulatory compliance requirements such as SOX, PCI-DSS, HIPPA; DPA 2018 / GDPR compliance etc.

Understanding of IT/Cyber security concepts i.e.

IDAM; Active Directory; Firewall; IDS/IPS; Email Security; DLP; Cryptography; Vulnerability management; etc.

Demonstrated capability for high ownership, hands-on, capable to deliver by self.

Worked on controls based on ITIL, ISO 20000, ISO 27001, ISO 31000, PCI DSS, CSA, CIS, NIST, GDPR and relevant standards.

Work shift may require to extend occasionally.

  • Lead Engineer, Information Security

    4 days ago

    gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge PartnersAcuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and industry...

  • Lead Engineer, Information Security

    2 months ago

    gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge Partners Acuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and...

  • Lead Engineer, Information Security

    3 days ago

    gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge PartnersAcuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and industry...

  • Lead engineer, information security

    5 days ago

    Gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge PartnersAcuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and industry...

  • Lead Engineer, Information Security

    3 weeks ago

    Gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge Partners Acuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and...

  • Lead Engineer, Information Security

    2 months ago

    Gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge PartnersAcuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and industry...

  • Lead Information Security Manager

    3 weeks ago

    Gurgaon, Haryana, India Randstad Digital Full time

    Lead Information Security EngineerHiring for a Lead Information Security role in Gurgaon (WFO). We are looking for an experienced professional to manage our information security program.Key Responsibilities:Develop, implement, and monitor the Information Security Management System (ISMS).Manage risk assessments and audits of PSS systems and services.Ensure...

  • Information Security Lead

    2 weeks ago

    Gurgaon, Haryana, India Randstad Digital Full time

    **Job Title:** Information Security Lead**Job Summary:** We are seeking an experienced Information Security Lead to join our team at Randstad Digital. The ideal candidate will have a proven track record of managing information security programs and ensuring compliance with industry standards.**Responsibilities:**Develop and implement information security...

  • Information Security Engineering Lead

    4 days ago

    Gurgaon, Haryana, India UnitedHealth Group Full time

    Job Summary:At UnitedHealth Group, we're committed to helping people live healthier lives and making the health system work better for everyone. As a Senior Info Security Engineering Consultant Firewall, IPS/IDS, you'll play a critical role in safeguarding our data, software, and hardware from advanced network security threats. We're seeking a seasoned...

  • Information Security Engineering Manager

    2 weeks ago

    Gurgaon, Haryana, India UnitedHealth Group Full time

    At UnitedHealth Group, we are committed to helping people live healthier lives and making the health system work better for everyone. Our Information Security Engineering Manager will play a critical role in this mission by leading the development and implementation of security strategies that protect our organization's assets and data. The ideal candidate...

  • Senior Information Security Engineer

    2 weeks ago

    Gurgaon, Haryana, India Acuity Knowledge Partners Full time

    Acuity Knowledge Partners is a leading provider of bespoke research, analytics, and technology solutions to the financial services sector. We are seeking a highly motivated and experienced Senior Information Security Engineer to join our Information Security team.The successful candidate will be responsible for running and maintaining ISO27001, conducting...

  • Senior Information Security Lead

    3 weeks ago

    Gurgaon, Haryana, India Ameriprise Financial Full time

    Job Title: Senior Tech LeadThe Senior Tech Lead - Information Security is a critical member of our team, responsible for establishing, supporting, and continuously improving our enterprise information security policies, practices, and standards.Key Responsibilities:Develop and implement information security governance frameworks to ensure compliance with...

  • Information Security Engineer

    3 weeks ago

    Gurgaon, Haryana, India Ameriprise Financial Full time

    About the RoleWe are seeking an experienced Information Security Engineer to join our Security Infrastructure Management team. The successful candidate will have a strong background in security tools operations, with a focus on DLP, UEBA/Securonix, and Zscaler.Key ResponsibilitiesConfigure and manage security tools, including Securonix, DLP, and...

  • Lead Engineer, Information Security

    1 month ago

    Gurgaon, India Acuity Knowledge Partners Full time

    Acuity Knowledge PartnersAcuity Knowledge Partners (Acuity) is a leading provider of bespoke research, analytics and technology solutions to the financial services sector, including asset managers, corporate and investment banks, private equity and venture capital firms, hedge funds and consulting firms. Its global network of over 6,000 analysts and industry...

  • Principal Lead

    3 weeks ago

    Gurgaon, Haryana, India Ameriprise Financial Full time

    Job Title: Principal Lead - Information SecurityThe Principal Lead - Information Security is a high-visibility role that drives Privileged Account Management (PAM) Governance and plays a crucial role in Cloud Governance initiatives. This role is responsible for establishing, supporting, and continuously improving enterprise information security policies,...

  • Avp- Information Security

    5 months ago

    Gurgaon, India Junglee Games Full time

    As our **AVP - Information Security** you will foster a security-first culture within the company and help implement solutions that will enhance their overall security posture and user experience by providing adequate awareness training, workshops, information sessions etc. **Responsibilities**: - Lead and manage the Product and Infrastructure security...

  • Information Security Specialist

    3 weeks ago

    Gurgaon, Haryana, India NCR Voyix Full time

    Job Title: Information Security EngineerLocation: Gurugram, HybridJob Summary:We are seeking an experienced Information Security Engineer to join our team at NCR Voyix. The successful candidate will be responsible for designing and implementing secure network architectures, identifying and mitigating security threats, and ensuring compliance with relevant...

  • Information technology security engineer

    3 weeks ago

    Gurgaon, India Real Time Data Services Full time

    Key Functional Responsibilities Executes the enterprise-wide and risk-based IT security strategies consistent with overall corporate and IT strategic plans. Leads implementation and enhancement of a Cybersecurity Governance Program which includes security and control framework that consists of standards, measures, practices, and procedures that provides...

  • Information Security Risk Manager

    1 week ago

    Gurgaon, Haryana, India Acuity Knowledge Partners Full time

    Job TitleLead Engineer, Information SecurityJob SummaryA challenging position within the Acuity Information Security team, reporting to the Director, CISO.About the RoleResponsible for the implementation and maintenance of ISO 27001, conducting internal audits, information security risk management, cyber security, BCMS, and SOC 2 framework implementation and...

  • Information Technology Security Engineer

    4 days ago

    gurgaon, India Real Time Data Services Full time

    Key Functional Responsibilities- Executes the enterprise-wide and risk-based IT security strategies consistent with overall corporate and IT strategic plans.- Leads implementation and enhancement of a Cybersecurity Governance Program which includes security and control framework that consists of standards, measures, practices, and procedures that provides...