Information Security Manager
Location
Mumbai | India
Job description
Job Title: Senior Manager / Associate Director - Information Security Management System (ISMS)
Location: Mumbai, India
Experience: 7+ years
Job Type: Full-time
We are committed to delivering innovative solutions and maintaining the highest standards of information security. We are seeking a dynamic and experienced professional to join our team as a Senior Manager/Associate Director for Information Security Management System (ISMS).
Responsibilities:
- ISMS Leadership:
- Lead and oversee the organization's Information Security Management System (ISMS) function.
- Develop and implement strategic plans for information security in alignment with business objectives.
- Risk Assessment:
- Conduct regular risk assessments to identify potential threats and vulnerabilities.
- Develop and execute risk mitigation strategies and ensure their integration into business processes.
- Third-Party Risk Management:
- Manage and enhance the third-party risk management program.
- Evaluate and monitor security controls of third-party vendors and partners.
- IT Audit:
- Plan, coordinated, and executed IT audits to assess the effectiveness of information security controls.
- Collaborate with internal and external audit teams to address audit findings and recommendations.
- ISO 27001 Compliance:
- Ensure compliance with ISO 27001 standards.
- Drive continuous improvement of the Information Security Management System.
- Penetration Testing:
- Oversee and coordinate penetration testing activities to identify and address vulnerabilities.
- Collaborate with technical teams to remediate and strengthen security postures.
- SOC (Security Operations Center):
- Collaborate with the SOC team to monitor, detect, and respond to security incidents.
- Could you implement improvements to enhance the effectiveness of the SOC function
- Info Security Gamut:
- Provide leadership and expertise across the complete spectrum of information security.
- Stay abreast of industry trends and emerging threats to continuously improve the security posture.
Qualifications:
- Bachelor's degree in Information Technology, Computer Science, or related field.
- 7+ years of relevant experience in Information Security Management.
- Strong experience with ISO 27001 implementation and compliance.
- In-depth knowledge of risk assessment methodologies.
- Proficiency in third-party risk management practices.
- Experience in IT audit processes and procedures.
- Familiarity with penetration testing methodologies.
- Exposure to Security Operations Center (SOC) activities.
- Excellent leadership, communication, and interpersonal skills.
Job tags
Salary