Work Location: Mumbai (Andheri-W); Near Azad nagar Metro Station.
Job Role & Required Skills:
Information Security leadership role that utilizes his experience in ISMS implementation & audit management to strategize, improve and streamline information security governance within the organization.
Accountable for leading the Information Security Governance & Cyber Security Assurance program.
Strong work experience in IT & process audit conduct, management and compliance (ISO 27001, PCI DSS, ISO 9001)
Management of ISO 27001 & PCI DSS implementation and compliance.
Perform internal audits, vendor audits & gap assessments in line with RBI, & ISO 27001 compliance.
Drive annual RBI System Audit for BBPOU license & periodic RBI inspections.
Successfully implemented IT/IS projects for meeting RBI Guidelines for PA & PG, NPCI BBPS circular & Digital Payment Security Standard.
Responsible to define & update ISMS policies & processes in line with RBI, NPCI guidelines.
Actively working to develop & improve SIEM architecture & SOC operations.
Provide response on client RFPs & manage client audits (Banks / Merchants).
Actively perform Quarterly Technical Risk Assessments & Configuration audits on infrastructure (e.g. anti-APT, Firewall, network devices, servers and databases).
Actively design RFPs, perform security reviews & conduct POCs for enterprise level solutions.
+10 years’ experience in ISMS implementation & process governance.
Knowledge on BCM implementation & IT DR practices.
Good knowledge of Cyber Security & Risk Assurance Process.
Review Cloud Security controls for business workload migrations to AWS & Azure.
Define Cyber Security strategy & implement policy & technical controls to enhance Cyber Security.
Plan and conduct internal audits / gap assessments in line with RBI / SEBI / IRDAI & ISO 27001 compliance.
Define & update relevant ISMS policies & processes in line with RBI, IRDAI, SEBI guidelines
Understanding of Quality model (ISO 9001) & IT Service management (ISO 20000).
Strong diagnostic & decision-making skills and ability to lead meetings.
Able to solve complex problems and create good working solutions.
Proficient in time management and can sustain work load