Sr Cyber Security Analyst - ISMS

Overview:

Key Responsibilities:

• Develop implement and monitor ISMS policies and procedures
• Conduct risk assessments and vulnerability analyses
• Manage cybersecurity tools and technologies
• Respond to and mitigate security incidents
• Provide expertise in security compliance and best practices
• Conduct security awareness training and education
• Participate in security audits and assessments
• Collaborate with crossfunctional teams on security initiatives
• Proactively identify and address security gaps or weaknesses
• Contribute to the development and maintenance of security documentation
• Lead investigations into security breaches or incidents
• Stay informed about emerging threats and security technologies
• Implement and maintain security controls
• Participate in the development of disaster recovery and incident response plans
• Conduct forensic analysis and investigations
• Assist in executing ISMS implementation
• Assist in conducting gap analysis for ISO 27001 and other cybersecurity frameworks such as but not limited to NIST SAMA NESA etc.
• Follow up for the closure of gaps
• Conduct ISMS internal audits and reporting
• Assist in various regulatory audits including but not limited to RBI IRDA SEBI etc.
• Conduct audits for vendor risk assessments
• Conduct basic IT infrastructure security checks

• Candidate must have experience in ISO 27001 Risk Assessment.
• Candidate must have certification in ISO 27001 LA/LI

Required Qualifications:

• Bachelors degree in Computer Science Information Technology or related field
• 2 years of experience in cyber security or information security management
• Professional certifications such as CISSP CISM or CISA
• Expertise in implementing and maintaining ISMS frameworks
• Strong understanding of risk assessment methodologies
• Experience with security incident response and management
• Proficiency in using cybersecurity tools and technologies
• Knowledge of regulatory requirements such as GDPR HIPAA or PCI DSS
• Excellent communication and interpersonal skills
• Ability to work well under pressure and handle multiple priorities
• Strong analytical and problemsolving abilities
• Knowledge of forensic investigation techniques
• Experience in leading security awareness and training programs
• Ability to collaborate with diverse teams and stakeholders
• Uptodate knowledge of industry trends and best practices

security analysis,risk assessment,incident response,cyber security,information security,information security management,security awareness,risk,iso 27001,information security management system (isms),nist framework