Role & Responsibilities:
Develop and implement security strategy and manage security controls across on prem and cloud environment. Oversee compliance with regulatory requirements and implement best practices related to information security.
Ensure that all systems and networks operate according to the internal security standards and regulatory requirements.
Ensure the availability, integrity, and security for all IT systems
Partner with Enterprise Risk Management to manage IT and IS Risks for the organization
Design controls around the system architecture from information security perspective
Monitor and maintain of DLP System organization wide. Recommend mitigations and countermeasures to address risks, vulnerabilities and threats.
Perform audit and security risk assessments and business impact analysis, including vulnerability scans, configuration reviews and network traffic analysis. Act on vulnerability information and implement adequate controls.
Investigate security breaches and recommend appropriate remedial measures.
Develop and maintain Business Continuity & Disaster Recovery Plans
Oversee the development, maintenance, and communication of systems documentation, policies and Procedures
Communicate Infosec and IT policies and standards throughout the organization, across levels spanning from top management to front line
Design & implement cyber-security training and awareness within the organization
Desired profile
8+ years of experience in Information Security domain preferably in BFSI or Consulting.
Strong understanding of IT SOC, Cloud and Cyber security, Information Security Governance and emerging trends in information security
Should have facilitation skills and problem solving skills. Ability to build & leverage relationships across the organization.
An undergraduate degree in computer science or application, engineering, or science is required.
Knowledge of security standards like ISO 27001 / PCI DSS / Cobit and/or certifications like CISA / CISSP / CCNA / CCNP preferred