Information Security

Designation- Information Security- Location- Mumbai, Noida, NCR**Company Description**: Nangia & Co LLP and Nangia Andersen LLP stand as leading professional services firms, collectively contributing over four decades of invaluable expertise to the success of a diverse clientele. Our esteemed list of clients encompasses some of the largest Indian business houses and Fortune 500 multinational companies. Established in 1984, our journey has been one of continuous evolution, solidifying our position as the preeminent tax and advisory firm. Over the years, we have excelled in providing unparalleled services across various sectors, covering a broad spectrum of offerings such as Audit and Assurance, Taxation, GST, Entry Level Strategy, Mergers and Acquisition, Corporate Financial Advisory, Sustainability and Development Services, Cyber Security (CERT Certified), Forensic Advisory, and IT Advisory. Our growth is a testament to the exceptional client service delivered by our team of 800+ professionals, recognized as the best in the industry. With a robust presence across India, our offices are strategically located in Noida, New Delhi, Gurugram, Bengaluru, Mumbai, Chennai, Dehradun, and Pune. This extensive network enables us to provide seamless and top-notch services to our clients, reinforcing our commitment to excellence in every aspect of professional services.
**Role Description**: Join our team in Mumbai, Noida, NCR as a full-time Information Security Consultant, where you will be immersed in a dynamic on-site role. As an integral part of our organization, you will take charge of critical tasks such as conducting thorough security assessments, auditing information systems, and playing a key role in the formulation and implementation of policies, procedures, and essential solutions. Your responsibilities extend to performing risk assessments, providing insightful recommendations, and actively contributing to the ongoing efforts to mitigate identified risks. This role demands not only a deep understanding of information security practices but also the ability to translate that knowledge into effective strategies that enhance our overall security framework. If you are passionate about information security and possess the skills to drive positive change, we invite you to be part of our team and contribute to the continued success of our organization.

**Responsibilities**:

- Understanding of the ISO 27001 standard, with expertise in both its implementation and auditing processes.
- Knowledgeable in ISMS Policy, Procedure and SOP creation, Review and Update.
- Proficient in conducting thorough risk assessments.
- Familiarity with Business Continuity principles and practices.
- Collaborate effectively with diverse client stakeholders to ensure alignment with Information Security Management policies, procedures, guidelines, and processes.
- Take ownership of creating ISMS-related documents/checklists, conducting audits, and driving ISM activities.
- Showcase industry expertise, displaying a profound understanding of the industry, emerging trends, issues, challenges, key players, and leading practices.
- Maintain a client-centric focus by efficiently addressing client needs and fostering productive relationships with client personnel.

**Qualifications**:

- 2 to 5 years of experience in IT Audit, ITGC, ISO 27001 Consulting, regulatory compliance.
- Assessment experience in RBI, SEBI, IRDAI, NPCI, GRC Compliance.
- Excellent interpersonal and communication skills to work effectively with clients and internal teams.
- Any bachelor’s or master’s degree.
- Certification in information security, such as ISO 27001, CISA is preferred.