Assistant Manager Cybersecurity Strategy & Governance
Experience: 5 to 10 Years
Location: Mumbai (Vikhroli/Goregaon)
Skills:
1. Knowledge of GRC workflows and Information Security Compliance requirements across regions
2. Ability to understand and have experience in ISO 27001: 2013 implementation for large organizations
3. Possess deep cyber security knowledge of cyber implementations/practices in at least one sector. E.g. Financial Services Pharma Manufacturing etc.
4. Ability to assess the maturity of cyber security using NIST guidelines
5. Ability to talk the security language with client s management
6. Possess excellent communication skills and should be willing to walk the extra mile on client delivery and excellence
7. Must be an excellent team member and willing to participate in the organization s initiatives on cyber security.
For Managers:
1. Should demonstrate capabilities of driving sales and engagement management for clients
2. Should be a Technically capable of showcasing SME abilities on cyber security domains
3. Candidates from other consulting firms will be preferred
Certifications:
1. Candidates must possess ISO 27001 : 2013 LI/LA and should be able to demonstrate their knowledge on the certified standard
2. CISA CISSP CISM would be preferred
3. Cloud certifications like CCSP CompTIA would be an added advantage.
Educational Qualifications:
o Education 60% above throughout academics
o One 3 years (at least) regular course is must either Diploma or Graduation
o Course: B.E. / B. Tech / MCA / M. Tech / MBA degree or equivalent
Required qualifications and skills
1. Candidate should have understanding on performing gap assessment on organizations
Cyber security landscape primarily to prevent them from cyber security threats
2. Candidate should have exposure to design development implementation and maintenance of information security framework aligned to framework like ISO 27001:2013
3. The candidate should have managed endtoend Information security cyber security for its organizations
4. Experience in performing the risk assessment from Cyber Security Business Continuity and Privacy perspective
5. Experience on Data Privacy including design/ development and review of privacy framework
aligned with GDPR requirements and GAPP framework
6. Experience on design/ assessment/ review of information security and privacy framework
aligned to IT Act requirements
7. Cyber Incident Response
Regulatory compliance assistance in Cyber for some of the key sectors including Telecom
BFSI Oil and Gas IT/ ITeS Retail and others
8. Development and documentation of information security / cyber security policies and
procedures
9. Exposure to international standards like NIST CIS 20 ISO27001 ISO 22301 ISO 20000
PCIDSS certifications like CISA CISSP CIPP CIPM
10. Aligned organization strategy to cyber strategy
20. Developing cyber strategy roadmap helping in implementation
21. Performing maturity assessment for cyber setup
22. Recommending roadmap for strengthening the organizations cyber security posture
23. Ability to perform independent assessments for third parties and provide recommendations to
clients in order to minimize cyber security risks
24. Strengthening of organizations business continuity posture
25. Candidate should have experience in working in teams and managing internal and external
stakeholders
26. Candidate should have key understanding on technology IT and governance aspects from
Cyber Security perspective
recommending roadmap for strengthening the organization's cyber security posture,iso 27001,cyber incident response,design, development, implementation, and maintenance of information security framework aligned to iso 27001:2013,iso 27001 : 2013 li/la,key understanding on technology, it and governance aspects from cyber security perspective,managing end-to-end information security, cyber security,governance,certifications like cisa, cissp, cipp, cipm,ability to perform independent assessments for third parties and provide recommendations to clients in order to minimize cyber security risks,sme abilities on cyber security domains,excellent communication skills,comptia,ccsp,cybersecurity strategy,exposure to international standards like nist, cis 20, iso27001, iso 22301, iso 20000, pci-dss,information security compliance,iso 27001: 2013 implementation,engagement management,developing cyber strategy roadmap, helping in implementation,grc workflows,design/ assessment/ review of information security and privacy framework aligned to it act requirements,regulatory compliance assistance in cyber,driving sales,cisa,performing maturity assessment for cyber setup,data privacy including design/ development and review of privacy framework,cyber security knowledge,strengthening of organizations business continuity posture,performing gap assessment on organizations' cyber security landscape,aligned organization strategy to cyber strategy,cissp,nist guidelines,cism,experience in working in teams and managing internal and external stakeholders,performing risk assessment from cyber security, business continuity and privacy perspective,development and documentation of information security / cyber security policies and procedures
