Loading...
 

Job Title:  Enhanced Rewards - ISMS - Manager

Job requisition ID ::  21485
Date:  Jan 5, 2022
Location:  Bengaluru
Designation:  Manager
Entity:  Deloitte Shared Services India LLP

Job Description

 

-To manage governance, risk, confidentiality, compliance for the enterprise and provide support to CISO on security & compliance assurance.

 

-To work with technology team to establish and improvise security frameworks, policies, procedures.

 

MAJOR ACCOUNTABILITY

 

-Implementation, operation and maintenance of the Information Security Management System based on standards like ISO/IEC 27000 series, CMMI etc as applicable.

 

-Develop, implement and monitor enterprise information security program which would take account of Developing, maintaining and publishing up-to-date information security policies, procedures and guidelines.

 

-Facilitating the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings

 

-Ability to present and articulate how controls quantitatively impact risk and align information risk to business risk

 

-Managing security incidents and events to protect corporate IT assets, regulated data and the company's reputation.

 

-Overseeing the awareness training programs for all employees, contractors and approved system users.

 

-Implementing processes related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations.

 

-Facilitating Internal & External Audits.

 

ESSENTIAL SKILLS & EXPERIENCE

 

-Minimum of 10-12 years of relevant experience in Information Security/ Cyber Security.

 

-Information Risk Management including Technology Risk & Vendor IT Risk Assessment

 

-IT Controls Reviews

 

-Vulnerability Assessment & Penetration Testing

 

-Understanding of Application Security, Security Audits, Business Continuity planning / Disaster recovery

 

-Good communication and interpersonal skills.

 

-Demonstrated success in implementing Infosec in previous organizations

 

-Basic understanding of various technologies such as programming languages, and applications.

 

-Good time management and multitasking skills.

Ability to build healthy working relations

 

Key Skills/Qualifications

 

-Minimum education: B.E/MCA/B.Tech.

Information security certifications (such as CISSP, CISA, CISM, ISO27001 LA or related certifications) would be preferred.

Self-motivated individual, and with ability to work to deadlines.

Team player with proven ability to build strong cross-business relationships