Women Entrepreneur Network
Location
Delhi | India
Job description
Organization type : NBFC (non-banking finance company), Banking Banking, NBFC experience is recommendedJob Description :- Manage all security assessments required internally or externally including the consulting firms and/or contractors engaged to support such assessments- Build partnerships across the organization in all disciplines: audit, legal, information technology, financial management (treasury, for instance), business operations, sales and marketing, corporate communications, risk management, etc. to ensure the security GRC program is aligned with business objectives and requirements- Develop an audit engagement model and a regulatory engagement model- Manage the security awareness program throughout the company.- Educate end-users and IT staff in security threats, risks, policies, and security best practices- Define end-users responsibilities in safe and secure computing- Documentation, Reporting & Analytics- Contribute to the design and implementation of an operational reporting framework that will provide regular metrics and statistics about our business and IT environment; analyze trends in security events, activities, etc. to better understand risks, insufficiencies in our solutions, staffing shortages, etc.; report security metrics and statistics to the IT Head and other key stakeholders throughout the company - Manage any security business practice irregularities, violations and infractions including exceptions, risk memos, security position memos- Prepare annual detailed plans for security reviews/audits and any other compliance tasks required internally or externallyTechnical Skills :- Proficient with MS Office, project management software, and India specific Banking, NBFC regulations w.r.t IT GRC, Audit , Risk Governance- Banking and NBFCs experience is highly recommended - Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended- Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplinesCompetencies :- Strong analytical skills, problem solving skills, and project/program management skills- Excellent communication skills working with all levels of management across the entire organization- Ability to handle team strength and work cohesively- Ability to act in Leadership position - Work and stretch as required in corporate scenario - Extrovert and OutspokenExperience Needed :- Demonstrable experience in security GRC management, security project management, security policy management, and other security practices w.r.t Cloud Infra , Basic IT infra design and architecture - Hands-on experience with designing, implementing and managing security IT GRC programs - Past experience managing a small to mid-sized teamEducational Requirements :- Bachelor's degree or equivalent business experience in Computer Science, Business Management, or MIS required- Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, ISO 27K LA or related certification will be added advantage (ref:hirist.tech)
Job tags
Salary
