Deputy Chief Information Security Officer sidbi

From 12 to 16 year(s) of experience

₹ Not Disclosed by Recruiter
- Mumbai

**Roles and Responsibilities**Certified Information Systems Security Professional (CISSP)
- / Certified Information Security Manager (CISM)/ Certified Chief Information Security Officer (CCISO) / Certified Information Systems Auditor (CISA).Scope of Work:
**The Dy. CISO of the Bank will be responsible for the following**:
**a) **Define information security roadmap for the organization with a futuristic vision**b) **Lead, implement and review hardware, network and software security standards and security controls within the organization, to protect systems, data and assets from both internal and external threats and prevent information and data loss/frauds.**c) **Identify and implement security assessment and testing processes across the organization, including but not limited to penetration testing, secure software development, vulnerability management etc.**d) **Identify best security products/tools for various purposes and
- implementation of same**e) **Lead security automation efforts for the organization**f) **Proactively monitor and identify security issues and potential threats, new vulnerabilities/threats and continuously improve security standards within the organization.**g) **Managing the daily operation of CSOC and implementation of the IT security strategy**h) **Implement and lead Security Assessment practices including Security Audits, Information Security Reviews, etc.**i) **Provide strategic risk guidance and consultation for IT Projects, including security risk assessment of Implementation Architecture, technical standards, and protocols**j) **Real-time analysis, investigations, and forensics, if a need arises and ensure to avoid and strengthen security measures.**k) **Developing strategies to handle security incidents and trigger investigation**l) **Regular Stakeholder communication on Information and data security practices and activities**m) **Develop a strong security team and enable employees be security aware with continuous training on security awareness**n) **Creating and implementing a strategy for the deployment of information security technologies and solutions to minimize the risk of cyber-attacks**o) **Conducting a continuous assessment of current IT security practices and systems and identifying areas for improvement**p) **Conducted network audit of all sites to study network response and performance. Running security audits and risk assessments**q) **Directed significant effort into IT asset management, involving hardening, tagging, tracking and auditing all IT assets across the companies**r) **Ensuring compliance with the latest regulations and compliance requirements**s) **Developing and implementing business continuity plans.**t) **Any other related matter assigned by SIDBI. Lead security automation efforts for the organization
- **Experience**:

- 12+ years of overseeing Information systems operations, preferably financial information security matters in Banks/ Large Corporates/ PSUs/ FIs/ Financial Services Organizations.
- At least 6 years of most recent experience in governing/managing Information and Data Security for a reputed organization.
- At least 7 years of most recent experience in Banking and Finance domain.
- 5 years should be at middle / senior management level.

**Skill Requirement**:

- Experience in Information Security Risk Management and Cybersecurity Technologies and strategy
- Knowledge of SIEM, PIM and NAC Solutions etc. Should have practical experience in implementing these solution
- Deep understanding and Knowledge of EDR, MDR, DR, WAF solutions
- Expertise in Cloud based Security Solutions
- Expertise in FIM, DAM, IAM, Access control Solution
- Expertise in Linux, Virtualization, Networking Concepts & OS, Data, Application Security Concepts and Tools
- Familiarity with Industry Security Standards and Protocols, Information and Data Privacy Regulations
- Good understanding of DevSecOps, Secure SDLC, Security Automation, Security testing concepts, DR & BCP concepts
- Strong in leadership skills and excellent interpersonal communications skills, stakeholder and vendor management
- Capable to understand and articulate impact of InfoSec Operations to the leadership
- Role:_Chief Information Security Officer (CISO)
- Salary:_ Not Disclosed by Recruiter
- Industry:_IT Services & Consulting
- Functional Area_IT & Information Security
- Role Category_IT Security
- Employment Type:_Full Time, Temporary/Contractual
- Key Skills
- risk managementNACPIMInformation SecuritySIEMCISSPCCISOCISM

Education
- UG:_B.Tech/B.E. in Any Specialization
- PG:_M.Tech in Any Specialization,MS/M.Sc(Science) in Cyber Security Engineering

**Company Profile**:
National Institute for Smart Government (NISG)
- National Institute for Smart Government (NISG) is a not-for-profit company set up in 2002 by the Government of India (GoI) on the Public-Private-Partnership (PPP) model with Secretary, Ministry of