Principal responsibilities are:
• Developing and implementing an Information Security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats.
• Proactively monitor and assess the IT infrastructure/applications of the company to ensure that the security of IT systems are maintained.
• Provide Strategic Risk guidance for IT projects, including the evaluation and recommendation of technical controls.
• In charge of IT Risk evaluations, Audits, BC/DR Management, Vulnerability management, SOC 24-7 and Security incident investigation.
• Establish Threat modelling framework and Secure SDLC framework to ensure all the production application are 100% complaint to a framework.
• Track interesting trends on emerging technologies that are relevant to information security and take advantage of such technology trends.
• Develop enterprise Data Loss Prevention frameworks to ensure data integrity, confidentiality and availability controls are in place during all the states of Data life cycle.
• Ensure policies, processes, procedures and technology implementation that addresses Critical Business Process Identification, Departmental Risk, Sensitive Information, Systems Security Planning, Systems Configuration Management, Vulnerability Management, Electronic Discovery, as well as Compliance Management.
Skills required for the role:
• Experience in Information security operations, Threat Intel & Hunting and SOC Continuous Monitoring.
• Hands-on experience on Threat Intelligence platforms for effective and timely decision making.
• Prior cyber incident response experience and/or experience working in high tempo cyber operations environments.
• Highly analytical, detail-oriented, and strong problem solving with a common-sense approach to resolving problems.
• Expertise to clearly define complex issues despite incomplete or ambiguous information.
• Strong communication and stakeholder management skills to navigate a large organization.
Educational Qualifications:
• Bachelors/Masters degree in Computer Science, information technology or Cybersecurity.
Certifications like CISSP, CISM, CISA, CEH are preferred
Years of Experience:
• This position requires minimum 14+ years of relevant experience
Location:
• Mumbai