Manager Information Security

Work Experience:

• Minimum 7-10 years experience in Information Technology Infrastructure Information Technology/ ISO Audits etc.

Key Responsibilities:

• Experience in managing ISO 9001 ISO 27001 and ISO 22301 Internal and External audits along with preparedness and review of the relevant documentation.
• Experience in managing other IT/ Technology audits like Cyber Security Review IT General Controls Audit and other Technology Compliances etc. and co-ordinating with various Internal and External Stakeholders for audit related data. Liaising with auditors for any follow-up actions etc.
• Coordinating with various internal teams for Periodic BCP-DR exercises and related documentation.
• Working closely with IT Security team to get key updates from Compliance point of view and other key areas like Vulnerability Management Incident Management Threat intelligence.
• Knowledge on Cybersecurity tools like SIEM PAM DLP EDR UBEA Anti-APT Deception Data encryption technologies etc.
• Managing Information Security Management System key involvement in ensuring adherence towards IS Policies/ IT Procedures and identification of gaps if any.
• Preparation of internal notes compliances and committee agenda.
• Coordinating with internal/external stakeholders for any IT/ Infrastructure/Procurement related requirements.
• Evaluating the best industry practice followed and identify the various process improvements.
• Coordinating with Internal / External stakeholders for various recommendations and suggestions made by the Committees.
• Knowledge of NCIIPC and SEBI Technology guidelines.
• Coordinating with various Technology teams for receipt of timely data/ information to various regulatory authorities.

Preferred skills:

• Good exposure in managing Information Security management Cyber System & ISO Audits and good exposure on NIST framework.
• Good interpersonal communication documentation and presentation skills.

Required Skills:

Information Security GovernanceISO 27001Cybersecurity