Willis Towers Watson
Location
Mumbai | India
Job description
Experience in Information Security or related roles and a demonstrable interest in security, compliance, and risk management, you will support the CISO and Information Security Officers in undertaking a range of activities as part of the global Information Security team.An understanding of information security best practices and experience in a relevant security role (operations, assurance, risk management or technical) would be beneficial, as would any familiarity third party security oversight / assurance, or IT principles and techniques appropriate to large enterprises such as IT service delivery, development, networks and systems, data centre operations; cloud services; networking, software development processes, or change management. Most importantly, you must be an effective communicator (both verbally and in writing) and a supportive team player, taking a consultative rather than confrontational approach whilst maintaining the integrity and independence of the Information Security function and ensuring effective management of security risk.Roles & Responsibilities :Knowledge and understanding of security and IT concepts. Experience working as part of a business support function such as risk, compliance or information security in a large enterprise.Knowledge of security standards, frameworks, regulation, and legislation.Experience of working in an analytical role, with an ability to interpret data, prepare reports and undertake business support activities.Risk assessment & Security AuditsKnowledge of current and evolving vulnerabilities including prioritization of remediation. Engage with the business to explain technical findings and communicate it effectively to them.Knowledge of current threats and evolving attack vectors.Information Security specific qualification (such as CISM, CISSP)IT security, service delivery, systems development, or similar experienceEngage on projects and programs outside of the Information Security Programme.Engage with different global information security teams while working on projects.Keep abreast with latest industry trends, current attack techniques, threat intelligence.Recommend improvements towards the maturity of the process.Recommend improvements for IS control effectiveness.Develop and maintain project risk management knowledge documentation.Support and maintain corporate project risk management mailbox. Support and maintain corporate global project risk management tracker.Analyze reports to identify potential issues related to data and propose solutions.Work with limited supervision to develop and implement regular improvements in project risk assessments process. (ref:hirist.tech)
Job tags
Salary
