Location: Chennai
Policies & Documentation Standards
Design and development of security policies, standards, and procedures in accordance with organization goals.
Support and co-ordinate with internal stakeholders on preparing information security documentation.
Actively establish & strengthen relationships with external and internal customers/stakeholders. Assist in developing knowledge assets such as methodologies, operating procedures, process documents, templates, white papers etc.
Evaluate and advise on the implementation and effectiveness of the cybersecurity safeguards to ensure that they provide the intended level of protection.
Provide insights to IT and Business Teams on secure development & implementation of Information Systems.
Risk Assessment
BCMS, QMS, ISMS Risk assessment, Awareness activities, Data Privacy, VAPT etc.
Perform risk assessments to identify gaps in compliance to information security standards and policies and devise strategies and implement controls to minimize the risk.
Proactively identify risks and escalate to project stakeholders. Data security governance, data classification, data security design, security management, personal information compliance and protection consulting.
Provide security guidance on emerging technologies (IoT, Blockchain etc.)
Control evaluation for cloud engagements & Offsite development centers & Control evaluation of Outside Service Providers (Suppliers of IT services)
Training & Awareness Program
Conduct cyber security trainings and awareness sessions
Monitor for attacks, intrusions and unusual, unauthorized or illegal activity
VA & VAPT
Penetration testing of products and systems.
Lead engagements from kick-off with product owners through scoping engagements, penetration testing and reporting while adhering to the agreed scope and deadlines.
Perform Web Application Penetration Testing Network Penetration Testing Mobile Penetration Testing and Code Review independently based on the guidance from leads.
Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems
Familiarity with industry-leading standards, such as NIST, CIS benchmarks, and OWASP
Familiarity with browser, Web service, cloud security, mobile applications’ security, and operating system security concepts
Understanding of leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk
Internal Audit & Reporting
Should independently handle internal audits (with minimal support from the leads) to ensure compliance with ISO 27001/ISO 22301/ISO 9001 requirement as well as process specific requirements.
Responsible for the effective documentation of internal audits (reports) with accurate mapping to control points.
Assist with the preparation of weekly / fortnightly / monthly reports.
Provide Security and Control metrics to Senior Management
Point out the non-conforming areas and suggest measures to improve the information security posture
Why join us?
We thought you would never ask! We offer all the usual stuff: competitive salary, flexible working hours, challenging product culture but the real perks are:
We welcome and encourage diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status.
www.tanla.com
Job Summary Set up hardware and configure software and drivers Install well-functioning LAN/WAN and other networks and manage components (servers,...
Apply For This JobWe are seeking a knowledgeable application support engineer to monitor and maintain the efficiency of our software applications. In this...
Apply For This JobOur vision is to transform how the world uses information to enrich life for all. Join an inclusive team passionate...
Apply For This JobWe are Hiring!!!Desktop Support Engineer Experience: 1 to 3 years Qualification: Any Graduate Location: Ponneri, Chennai (Candidates from nearest location...
Apply For This JobSalesPond is a sales and marketing services provider, headquartered in Australia, with a local India representative entity. We pride ourselves...
Apply For This JobHope you are good!!!Dear All,Greeting from FuturesoftIndia!!!We have opening for Talent acquisition ( Contractual hiring experience) Shifts- Day shift (9:30am...
Apply For This Job