IT Governance and Security- 7 yrs

Company website: -

Position: IT Governance and Security

Job Summary: -

The ideal candidate will possess a strong understanding of IT governance, risk management, cybersecurity, and regulatory compliance, with experience in the banking or financial services industry.

Key Responsibilities:

IT Governance:

1. Develop, implement, and maintain IT governance frameworks to ensure alignment with the banks strategic objectives and regulatory requirements.

2. Establish and enforce policies, standards, and procedures for IT operations, ensuring consistency and adherence across the organization.

3. Conduct regular assessments and audits of IT governance practices to identify areas for improvement and ensure compliance with industry best practices.

4. Collaborate with business units to align IT strategies with organizational goals and ensure proper resource allocation.

5. Monitor and report on IT governance metrics and performance indicators and prepare the Monthly reports for the same.

Information Security:

1. Design and implement the banks information security strategy, ensuring the protection of sensitive data and systems from cyber threats.

2. Develop, enforce, and regularly update information security policies, procedures, and standards.

3. Conduct risk assessments to identify vulnerabilities and implement mitigation strategies to reduce security risks.

4. Lead incident response efforts, including investigation, reporting, and resolution of security breaches.

5. Ensure compliance with laws, regulations, and standards related to information security (e.g., ISO 27001,).

6. Manage the deployment and maintenance of security tools, technologies, and systems (e.g., firewalls, intrusion detection systems, encryption technologies, antivirus).

Regulatory Compliance and Risk Management:

1. Monitor and ensure compliance with local and international regulations related to IT governance and information security.

2. Liaise with regulatory bodies and external auditors to address compliance requirements and audits.

3. Identify and assess IT-related risks, developing mitigation plans and ensuring proper risk management processes are in place.

4. Provide regular updates and reports to CTO/IT Governance Lead on compliance, risks, and security posture.

Awareness to Staff:

1. Prepare training and awareness programs material (e.g, e-mail reminders, pamphlets,) to staff on information security topics.

Mandate Skills:

• Strong knowledge of IT governance frameworks (e.g., COBIT, ITIL) and information security standards (e.g., ISO 27001, NIST).
• Expertise in risk management, cybersecurity, and regulatory compliance.
• Excellent communication, and interpersonal skills.
• Ability to work collaboratively across departments and with external stakeholders.

Key Performance Indicators (KPIs):

1. IT governance and information security regulations and standards.

2. Reduction in security incidents and vulnerabilities.

3. Timely completion of risk assessments and audits.

4. Effectiveness of IT governance frameworks and security policies.

5. Staff training and awareness levels regarding IT governance and security.

Qualification: -Exposure to ITIL processes (Incident, Event, and Change Management) is highly desirable. Certification in IT/Networking (e.g., CompTIA A+, ITIL Foundation, CCNA) is a plus.

Experience:- 7+Yrs IT governance frameworks and Information security standards

(e.g.,ISO 27001,NIST CSF)

Address: - Mizuho Global Services India Pvt. Ltd,

11th Floor, Q2 Building Aurum Q Park, Gen 4/1,

Ttc, Thane Belapur Road, MIDC Industrial Area,

Ghansoli, Navi Mumbai