AVP - Cloud Security (Job Code : J44385)  

 Job Summary
Share this job on Facebook  Share this job on Twitter  Share this job on Linked In
 
Experience:
8.00 - 15.00  Years 
 
Location:
Mumbai
 
Designation:
AVP - Cloud Security
 
Degree:
BCA, BE-Comp/IT, BE-Other, BSc-Comp/IT, BSc-Other, BTech-Comp/IT, BTech-Other
 
Educational Level:
Graduate/Bachelors
 
Stream of Study:
 
Industrial Type:
IT-Software/Software Services
 
Functional Area:
IT Software - Network Administration / Security
 
Key Skills:
Cloud AND Security
 
Job Post Date:
2021-09-20 15:03:57  
 
 

 Company Description
 
Our client is a General Insurance Company. They are one of the leading private sector general insurance company in India offering insurance coverage for motor, health, travel, home, student travel and more. Policies can be purchased and renewed online as well. They are one of the leading private sector general insurance companies in India with a Gross Written Premium (GWP) of Rs135.92 billion for the year ended March 31, 2020. The company issued over 26.2 million policies and settled over 1.86 million claims as on March 31, 20.
 

 Job Description
 
Job Responsibilities
 
• Serve as a subject matter expert (SME) on cloud cyber and information security risk for cloud platforms such as AWS, Microsoft Azure & GCP
• Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program across all cloud platforms
• Work directly with Technology & business units to facilitate IT risk assessment and risk management processes and implement relevant cloud security controls to ensure acceptable levels of residual risk
• Liaise with the enterprise architecture team to ensure alignment between the security and enterprise architectures
• Coordinate information security and risk management projects with Technology and relevant business units
• Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company`s reputation
• Develop strategies to achieve compliance consistent with industry accepted frameworks such as CIS,  NIST etc  and drive cloud security certification such as ISO 27017
• Designing and implementing end-to-end cloud solutions with a focus on all aspects of security
• Design, implement, manage, and automate DevSecOps capabilities in cloud using relevant toolsets and automation
• Deployment of cloud native and third party technologies such as  Cloud Access Security Broker (CASB), Cloud Workload Protection (CWP), and Cloud Security Platform Management (CSPM)  to secure cloud platforms
• Identify & manage regulatory landscape \ requirements for public cloud and implement relevant protocols to demonstrate compliance
• Interact with Cloud Operations and Cloud Security teams to implement security frameworks required to meet overall security requirements
• Drive the development and support of internal tools and programs for the areas of (Change Management, Access Security, Cloud Asset Management etc.)
• Lead cybersecurity controls testing to determine control effectiveness and adherence to both internal & external cybersecurity policies, procedures and standards
• Periodic measurement and reporting on cloud security posture


Required Qualification / Experience:
• At least 2-3 years of experience in implementing & monitoring cloud security practices
• At least 2 of the below with 1 of the cloud security certifications a must:
• ISO 27001 Auditor \ Implementor
• AWS Security \ Azure Security (Cloud Security certification)
• CISA \ CISM \ CISSP