Job Description:
Purpose of the role: Plan and Assess Security compliance audit assurance programme for the client accounts to support all compliance audit and certification reviews in line with client contractual commitments and enterprise policies & standards
Liaise with organization technology security policy, ISO 27001, Data privacy and requirement to remediate new and outstanding issues; track security-related issues.
Position reports to: Director – Information Security (Information Security Compliance & Audit Assurance)
Main Responsibilities:
Responsible for validating compliance to enterprise controls and client mandates of all info security, network, data security and data management controls across all locations for client account
Own and deliver all security related audits and Certifications pertaining to client account contractual requirements
Proficient in security compliance assurance programme implementation with a defined calendar schedule for assurance review / audit
Strong presentation skills to demonstrate client account level compliance to enterprise security & monitoring controls and client contractual commitments from compliance perspective
Ensure security gaps identification, assessment, quantification, reporting, communication, mitigation and monitoring
In-depth knowledge of security compliance and assurance concepts including risk assessment, risk acceptance process, vulnerability management, etc.
Revise and develop processes to strengthen the current Security Assurance Framework, Review policies & client contractual documents to highlight the challenges/dependencies in managing SLAs
Creation of reports, dashboards, metrics for security compliance & assurance operations and presentation to CISO and enterprise leadership
Oversee and / or conduct information security audits as per internal defined schedule and support facilitation of client / certification audits.
Qualifications:
A bachelor’s degree required.
Security certifications such as CISSP is an advantage.
Experience of at-least 2- 4 years in Information Security domain.
Experience with audit/consulting firm would be an added advantage
Functional Skills:
Strong understanding of Security Compliance and Risk Assurance.
Strong knowledge of risk assessment, security incident management, compliance audits, security metrics
Sound knowledge of ISO 27001:2013, Knowledge of NIST 800-53 and NIST Cybersecurity Framework
Working knowledge of industry standards such as SOC1/SOC2, CIS
Working knowledge of privacy standards such as GDPR/ CCPA
Personal Attributes:
Ability to work independently with minimal direction and/or supervision.
Ability to prioritize and multitask. Flexibility and adaptability in work approach.
Calmness and clarity of thought under pressure and ability to maintain confidentially.
Strong written and verbal communication skills.
Self-driven with team-oriented interpersonal skills; ability to effectively
Interface with a broad range of people and roles.
Skills Required
Auditing;Accounting;Audit Compliance;IT Audit;Security Compliance
Location
Mumbai / Hyderabad/Secunderabad / Pune / Chennai / Bangalore/Bengaluru
Years Of Experience
1 to 6 Years
JOB TITLE – System Admin Location: Mundra, Gujarat (On-site) Responsibilities: – Responsible for the maintenance, configuration, and reliable operation of...
Apply For This JobNetwork Engineer (L1) Responsible for Maintenance and administration of computer networks and related computing environments including systems software, applications software,...
Apply For This JobJob Description Job Description – Technical Support Executive Location: Gurugram Experience: 0-3 Years (Fresher’s can apply as well) Key Roles...
Apply For This JobCandidate should have 1 ? 5 years of experience into Human Resource Operations supporting international clients into BPO industry. Must...
Apply For This JobPosition: IT Associate Manager – IT Configuration Manager Job Description:What You’ll Be Doing As the Configuration Manager you will be...
Apply For This JobIT Service delivery manager with 10-14 years of experience. i) Experience in mangaging End-to-End project engagements ii) Strong technical understanding...
Apply For This Job