Incharge – Security Risk, Compliance & Governence

Incharge – Security Risk, Compliance & Governence

Education Qualifications: Masters or Bachelor of Engineering in Computer Science/ Electronics/ Cyber Security

Key Skills: 
ISO 27001
Security Governance
IT Risk
PCI DSS
BCMS
Security Risk
Compliance
Job Description: 

Job Role:

  • GRC and Security Governance
  • Implement and manage a strong Security Governance program
  • Work with the IT Risk to ensure security readiness
  • Engage with internal and external audit teams
  • Manage the Information Security Management Systems & Business Continuity Management Systems and responsible for certification of ISO 27001, PCI DSS & ISO 22301 enforcing NPCI to follow PDCA (Plan, Do, Check & Act)
  • Responsible for implementation of Security Global Standards like ISO 27001, ISO22301, PCI DSS, and RBI Cyber security circular.
  • Responsible for handling both internal and external process/governance/quality audits
  • Create employee awareness, interest, and participation in implementation of quality processes e.g. training, audits, etc
  • Establish communication channels within organization e.g. training
  • Spread security awareness
  • Ensure compliance and reporting requirements for IT and Security processes
  • Prepare the processes, teams, documents for internal and external audits
  • Manage statutory, regulatory & internal committee meetings and proceedings
  • Track and remediate all audit observations with corrective and preventive actions
  • Resolve all security alerts raised by SOC within the IT function with corrective and preventive actions
  • Works with the IT Risk teams to track and remediate all findings/ observations/ improvements reported by the respective teams
  • Directly responsible for procedures and controls to assure compliance with applicable regulatory and legal requirements as well as good business practices.
  • Oversee/Facilitate formal risk analysis and self-assessments program for various systems and processes, as required by the CISO and/or IT teams
  • Act as a liaison between the CISO and the IT Teams to ensure all governance, risk and compliance management activities are managed end-to-end, and the lifecycle of various initiatives and operational activities are completed/concluded
  • Strong documentation and communications skills
  • Ability to prioritize and multitask. Flexibility and adaptability in work approach
Job Department: 
Information Security
Job Location: 
Mumbai
Job Experience Type: 
Job Experience min: 
12 years
Job experience max: 
16 years