Tata Teleservices
Location
Mumbai | India
Job description
Why position exists
The Chief Information and Security Officer (CISO) shall be responsible for building and driving the TTBS cybersecurity strategy and framework, with initiatives to secure the organization's cyber and technology assets along with implementing and overseeing the organisation's cybersecurity program.
Job Responsibilities
1.Aligning cybersecurity and business objecves and ensure that the objecves of your organisaon's cybersecurity program are in line with the organisaon goals and providing upper-level management with a consolidated and comprehensive view of the organisation's cybersecurity posture.
2.Ensure clear communicaon between the security team and key stakeholders. Guide TTBS on security measures that need to be put in place in new project launches.
3.Providing business leaders with intelligence on key cybersecurity trends. For e.g., providing the board of directors or senior executives with information like - the security risk profile of the organisation, any cybersecurity improvements in motion, notable cybersecurity incidents, return on investment on cybersecurity initiatives.
4.Coordinang the response and recovery efforts when a data or security breach occurs to bring a level of clarity to the crical internal and external stakeholders. To monitor every single information security incident that occurs and communicate information regarding incident response effectively to upper-level management. 5.Promote a culture of strong informaon security, and to facilitate broad security cultural change across their organisaon, the CISO should act as a thought leader, continually communicating their strategy and vision including ongoing security awareness training and education for users.
6.Developing and implementing secure processes, policies, procedures, and systems used to prevent, detect, mitigate, and recover from cyberaacks including developing, justifying, and evaluating cybersecurity investments.
7.Leading cybersecurity operations and implementing disaster recovery protocols and business continuity plans with business resilience in mind to ensure business continuity in the aftermath of a security incident.
8.Ensure that the organisations remain compliant with cybersecurity standards, policy, regulations, and legislation.
9.Ensuring consistent vendor management processes are in place to mitigate information security risks. For example, advise and assist employees when assessing supply chain cyber threats and provide them with an understanding of the information security impacts of entering into vendor relationships.
Qualification:
Degree in computer science, engineering, or business. Familiar with leading security standards from NIST and ISO. IT certifications such as the Certified Information Systems Security Professional (CISSP) from (ISC)2 or Certified Information Security Manager (CISM) designations from ISACA.
Key Skills:
The CISO skillset is expected to combine deep knowledge of information security, experience in information technology, risk management and leadership skills. Effective communication with both technical and non-technical staff and clear articulation of the organization's security posture to senior management (particularly when the situation is not satisfactory). Quick decision making, leadership, effective communication, strong management, negotiation abilities and relationship building. Maintaining pace with the cyber threat landscape and new technologies, constantly learning on the job and picking up new skills. Innovation and imagination in creating and delivering cyber security strategies.
Overall Work Experience:
A passion for information technology and a commitment to continuous learning alongwith strong people management skills and 5 years' experience in managing security operations of a large organization in an overall experience of 15 years
Job tags
Salary
