Job Title:  Enhanced Rewards - ISMS - Manager

Job requisition ID ::  21485
Date:  Jan 5, 2022
Location:  Bengaluru
Designation:  Manager
Entity:  Deloitte Shared Services India LLP

Job Description


-To manage governance, risk, confidentiality, compliance for the enterprise and provide support to CISO on security & compliance assurance.


-To work with technology team to establish and improvise security frameworks, policies, procedures.




-Implementation, operation and maintenance of the Information Security Management System based on standards like ISO/IEC 27000 series, CMMI etc as applicable.


-Develop, implement and monitor enterprise information security program which would take account of Developing, maintaining and publishing up-to-date information security policies, procedures and guidelines.


-Facilitating the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings


-Ability to present and articulate how controls quantitatively impact risk and align information risk to business risk


-Managing security incidents and events to protect corporate IT assets, regulated data and the company's reputation.


-Overseeing the awareness training programs for all employees, contractors and approved system users.


-Implementing processes related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations.


-Facilitating Internal & External Audits.




-Minimum of 10-12 years of relevant experience in Information Security/ Cyber Security.


-Information Risk Management including Technology Risk & Vendor IT Risk Assessment


-IT Controls Reviews


-Vulnerability Assessment & Penetration Testing


-Understanding of Application Security, Security Audits, Business Continuity planning / Disaster recovery


-Good communication and interpersonal skills.


-Demonstrated success in implementing Infosec in previous organizations


-Basic understanding of various technologies such as programming languages, and applications.


-Good time management and multitasking skills.

Ability to build healthy working relations


Key Skills/Qualifications


-Minimum education: B.E/MCA/B.Tech.

Information security certifications (such as CISSP, CISA, CISM, ISO27001 LA or related certifications) would be preferred.

Self-motivated individual, and with ability to work to deadlines.

Team player with proven ability to build strong cross-business relationships