Information Security Manager

Location

Mumbai | India

Job description

Job Title: Senior Manager / Associate Director - Information Security Management System (ISMS)

Location: Mumbai, India

Experience: 7+ years

Job Type: Full-time

We are committed to delivering innovative solutions and maintaining the highest standards of information security. We are seeking a dynamic and experienced professional to join our team as a Senior Manager/Associate Director for Information Security Management System (ISMS).

Responsibilities:

1. ISMS Leadership:

• Lead and oversee the organization's Information Security Management System (ISMS) function.
• Develop and implement strategic plans for information security in alignment with business objectives.

1. Risk Assessment:

• Conduct regular risk assessments to identify potential threats and vulnerabilities.
• Develop and execute risk mitigation strategies and ensure their integration into business processes.

1. Third-Party Risk Management:

• Manage and enhance the third-party risk management program.
• Evaluate and monitor security controls of third-party vendors and partners.

1. IT Audit:

• Plan, coordinated, and executed IT audits to assess the effectiveness of information security controls.
• Collaborate with internal and external audit teams to address audit findings and recommendations.

1. ISO 27001 Compliance:

• Ensure compliance with ISO 27001 standards.
• Drive continuous improvement of the Information Security Management System.

1. Penetration Testing:

• Oversee and coordinate penetration testing activities to identify and address vulnerabilities.
• Collaborate with technical teams to remediate and strengthen security postures.

1. SOC (Security Operations Center):

• Collaborate with the SOC team to monitor, detect, and respond to security incidents.
• Could you implement improvements to enhance the effectiveness of the SOC function

1. Info Security Gamut:

• Provide leadership and expertise across the complete spectrum of information security.
• Stay abreast of industry trends and emerging threats to continuously improve the security posture.

Qualifications:

• Bachelor's degree in Information Technology, Computer Science, or related field.
• 7+ years of relevant experience in Information Security Management.
• Strong experience with ISO 27001 implementation and compliance.
• In-depth knowledge of risk assessment methodologies.
• Proficiency in third-party risk management practices.
• Experience in IT audit processes and procedures.
• Familiarity with penetration testing methodologies.
• Exposure to Security Operations Center (SOC) activities.
• Excellent leadership, communication, and interpersonal skills.

Job tags

Salary