GRC - Governance Risk and Compliance
Avp Hr Solutions Private Limited
Location
Navi Mumbai | India
Job description
GRC (ISO-27001) (Mandatory to sign 1 year bond)
Job description
Essential Functions
ï'· Responsible for
ISO 27001 based Information Security Management System
implementation and sustenance.
ï'· Responsible to assist in review of Information Security controls in areas as: Change
management process, Incident management process, Backup process, User identity
and access management, Antivirus management, SLA performance and monitoring,
Exchange of information, Physical Security.
ï'· Responsible to assist in developing information assets inventory and classification.
ï'· Review & Analyse system generated reports, logs, audit reports, vulnerability test
results, and penetration test reports.
ï'· Assess of operating system updated, patches and request configuration changes to
tighten security.
ï'· Ensure the security of traffic that passes through the network.
ï'· Understand the attack simulation and provide suggestions on improving the
enterprise security.
ï'· Review and analyze the security incidents, emerging threats & alerts that are
generated in security device logs.
ï'· Assists security administrators and IT Team in the resolution of reported security
incidents.
ï'· Analyze the results of security assessments and work with system owners to
remediate found issues.
ï'· Review and maintain risk control matrices.
ï'· Assess information security posture, identify the risks in the environment and share
solutions to mitigate the identified risk.
ï'· Assess of user access provisioning and de-provisioning.
ï'· Responsible for creating weekly dashboard on the security statuses providing high
level review of Information Security to the upper management
Job tags
Salary