Location
Ahmedabad | India
Job description
Responsibilities
- Security Strategy and Leadership:
- Develop and communicate the organization's information security strategy and vision.
- Provide leadership and guidance to the security team and other departments.
- Risk Management:
- Identify, assess, and prioritize information security risks.
- Develop risk mitigation strategies and action plans.
- Security Policies and Procedures:
- Establish and maintain information security policies, procedures, and standards.
- Ensure alignment with industry best practices and regulatory requirements.
- Security Awareness and Training:
- Implement security awareness programs to educate employees about security best practices.
- Oversee security training and development initiatives.
- Security Architecture and Technology:
- Evaluate, select, and deploy security technologies, tools, and solutions.
- Ensure the security architecture aligns with organizational goals.
- Incident Response and Management:
- Develop an incident response plan and lead the response to security incidents.
- Investigate breaches, report on findings, and implement corrective actions.
- Having Hands on experience of OT/IoT/IIoT environment
- Compliance and Regulatory Affairs:
- Ensure the organization's compliance with relevant security regulations and standards.
- Collaborate with legal and compliance teams to address legal and regulatory requirements.
- Security Audits and Assessments:
- Conduct regular security audits and assessments of the organization's systems and processes.
- Develop and monitor remediation plans for identified vulnerabilities.
- Vendor and Third-Party Risk Management:
- Assess and manage security risks associated with third-party vendors and suppliers.
- Security Budget and Resource Management:
- Develop and manage the information security budget.
- Allocate resources effectively to support security initiatives.
- Security Metrics and Reporting:
- Establish key performance indicators (KPIs) to measure the effectiveness of security programs.
- Prepare and present security reports to senior management and the board.
Qualifications Bachelor's or Master's degree in computer science, information security, or a related field.
- Industry-recognized certifications (e.g., CISSP, CISM, CISA) are a plus.
- Proven experience in information security and risk management.
- Strong leadership and management skills.
- Excellent communication, collaboration, and interpersonal abilities.
Typically, CISOs have at least 10-15 years of experience in information security, including several years in leadership roles.
Job tags
Salary
