Analyst Information Security
Location
Mumbai | India
Job description
What We'll Bring:
We are looking for techno functional profiles to fill TU CIBIL Information Security contractual / full time positions. Candidates with decent experience and good skill set in information security and knowledge of security technologies and solutions will fit the bill. Please find the job description below and share your referrals.
Basic Requirements:
2-3 years of experience in information security - audits & assessments, security operations
At minimum, one security certification
Hands on experience with client audits and risk assessments
Preferably based out of Mumbai and willing to work in a hybrid model
Must have good communication skills and be able to drive communications with internal teams and banks / partners
What You'll Bring:
We are looking for techno functional profiles to fill TU CIBIL Information Security contractual / full time positions. Candidates with decent experience and good skill set in information security and knowledge of security technologies and solutions will fit the bill. Please find the job description below and share your referrals.
Basic Requirements:
- 2-3 years of experience in information security - audits & assessments, security operations
- At minimum, one security certification
- Hands on experience with client audits and risk assessments
- Preferably based out of Mumbai and willing to work in a hybrid model
- Must have good communication skills and be able to drive communications with internal teams and banks / partners
Job Responsibilities:
- Candidate shall be responsible to build strong relationship with internal and external stakeholders to drive customer / partner risk assessments
- Must carry good understanding of different security domains - network security, end point security, server security, logging and monitoring, technology integrations, etc.
- Must ensure that technology and process risks are identified and reported, adequate recommendations are made and tracked for timely closure of assurance actions
- Must be familiar with regulatory requirements - RBI Cyber Security Framework, Regulatory Advisories, CICRA, 2006, etc.
- Good to have good security policy and process documentation skills and carry hands on experience in drafting SOPs
- Carry good knowledge on industry security standards and frameworks - ISO27001, SOC 2, NIST, PCI DSS and hand on at least one of them
- Plan and execute day-to-day compliance activities to maintain company's ISO27001, SOC 2 certifications
- Must have good technical knowledge on minimum baselines and hardening benchmarks for various flavors of server OS and network devices and must have skills to carry out configuration reviews
- Be able to work closely with IT Infra and Applications to understand the technical intricacies of IT and Security projects
- Must have good knowledge on vulnerability and threat management process and carry an audit lens to improve efficiency of the VTM program
- Must be able to articulate audit requirements from Internal and External Auditors
Impact You'll Make:
1) ISO27001 certification and compliance.
2) SOC Type I and Type II
3) Handling Client/Member audits
4)Responding to client questionnaires and RFP
5) Handling BCP process for Mumbai India
TransUnion Job Title
Analyst, Information Security
Job tags
Salary