Manager Compliance

Job description

Primary role is to lead the ISO certification maintenance to comply with information security standards for compliance on Data security which Include Operate the ISMSUpdate the documentation Review the risk assessment Monitor and measure the ISMS Perform internal audits Perform management review Perform corrective actions.

Job location Bangalore/HYD

Detailed descriptions of responsibilities

1.Operate the ISMS :

1.make sure you perform all the activities described in the ISMS policies and procedures.

2.complying with all the requirements in all ISO 27001 documents and producing the real records.

3.coordination with internal teams to make sure ISO 27001 practices are followed in organization.

4.Make sure that company is stringently following all data security practices.

5.Conduct regular trainings for data security practices.

2.Update the documentation:

1.Periodic review of documentation and records and recommend possible changes.

3.Review the risk assessment:

1.On account of changed circumstances the threats and vulnerabilities will change and automatically risk associated also changes. In that context Information Security Manager needs to review the risk periodically do risk assessment perform necessary changes and update the documents.

4.Monitor and measure the ISMS:

1.Review ISMS objectives on periodic basis. Improvise the ISMS objectives with respect to new business needs and risk identified. Update ISMS systems and implement review and monitor the performance in accordance with the business needs.

5.Perform internal audits:

1.Perform internal audits at regular intervals review the ISMS and identify gaps and mitigate.

6.Perform management review:

1.Submit the report of ISMS with Top Management discuss the progress improvements challenges etc.

7.External Audits:

1.Coordinate with External Certification body schedule and conduct the ISMS surveillance audits at regular intervals.

8.Customer Communication

1.Security RFPs Fill up and submit the RFPs/Questionnaires requested by customers in due time

2.Inform customers about security incident as per SLA/Privacy policies

3.Customer Communication in regards with Data subjects request as per SLA

4.Get on call with customers to resolve/answer security related queries.

Job description

Primary role is to lead the ISO certification maintenance to comply with information security standards for compliance on Data security which Include Operate the ISMSUpdate the documentation Review the risk assessment Monitor and measure the ISMS Perform internal audits Perform management review Perform corrective actions.

Job location Bangalore/HYD

Detailed descriptions of responsibilities

1.Operate the ISMS :

1.make sure you perform all the activities described in the ISMS policies and procedures.

2.complying with all the requirements in all ISO 27001 documents and producing the real records.

3.coordination with internal teams to make sure ISO 27001 practices are followed in organization.

4.Make sure that company is stringently following all data security practices.

5.Conduct regular trainings for data security practices.

2.Update the documentation:

1.Periodic review of documentation and records and recommend possible changes.

3.Review the risk assessment:

1.On account of changed circumstances the threats and vulnerabilities will change and automatically risk associated also changes. In that context Information Security Manager needs to review the risk periodically do risk assessment perform necessary changes and update the documents.

4.Monitor and measure the ISMS:

1.Review ISMS objectives on periodic basis. Improvise the ISMS objectives with respect to new business needs and risk identified. Update ISMS systems and implement review and monitor the performance in accordance with the business needs.

5.Perform internal audits:

1.Perform internal audits at regular intervals review the ISMS and identify gaps and mitigate.

6.Perform management review:

1.Submit the report of ISMS with Top Management discuss the progress improvements challenges etc.

7.External Audits:

1.Coordinate with External Certification body schedule and conduct the ISMS surveillance audits at regular intervals.

8.Customer Communication

1.Security RFPs Fill up and submit the RFPs/Questionnaires requested by customers in due time

2.Inform customers about security incident as per SLA/Privacy policies

3.Customer Communication in regards with Data subjects request as per SLA

4.Get on call with customers to resolve/answer security related queries.