Associate Director - Information Security Management System

Location

Mumbai | India

Job description

Job Title: Associate Director - Information Security Management System (ISMS)

Location: Bangalore and Mumbai

Experience: 8+ years

Certifications: CISA, CISSP

Job Summary:

We are seeking a highly experienced and skilled professional to join our team as an Associate Director for Information Security Management System (ISMS). The ideal candidate will have a strong background in information security, extensive experience in managing ISMS, and possess certifications such as CISA and CISSP. This role involves leading and directing the information security strategy and practices within the organization, with a focus on ensuring the confidentiality, integrity, and availability of information assets.

Key Responsibilities:

1. ISMS Leadership:

• Lead the development, implementation, and maintenance of the Information Security Management System (ISMS).
• Define and communicate the organization's information security policies, standards, and procedures.

1. Risk Management:

• Conduct risk assessments and ensure appropriate controls are in place to mitigate identified risks.
• Develop and implement strategies for managing and reducing information security risks.

1. Compliance:

• Ensure compliance with relevant industry standards, regulations, and legal requirements.
• Coordinate and participate in internal and external audits related to information security.

1. Security Architecture:

• Oversee the design and implementation of security architectures, ensuring alignment with business goals and industry best practices.
• Collaborate with IT teams to integrate security measures into infrastructure and application development processes.

1. Security Awareness:

• Develop and deliver training programs to increase awareness and knowledge of information security best practices among employees.

1. Incident Response:

• Lead and coordinate incident response activities, including investigation, resolution, and reporting.
• Develop and maintain incident response plans to ensure a timely and effective response to security incidents.

1. Vendor Management:

• Evaluate and manage third-party security risks through effective vendor risk management practices.
• Collaborate with vendors to ensure compliance with security requirements.

1. Team Leadership:

• Build and lead a high-performing information security team.
• Provide mentorship and guidance to team members, fostering a culture of continuous improvement and professional development.

Qualifications and Skills:

• Bachelor's degree in Information Security, Computer Science, or a related field. Master's degree preferred.
• 8+ years of experience in information security with a focus on ISMS.
• CISA and CISSP certifications are mandatory.
• Strong understanding of information security principles and best practices.
• Proven experience in leading and managing information security teams.
• Excellent communication and interpersonal skills.
• Ability to collaborate with cross-functional teams and influence stakeholders.

Job tags

Salary