InfoSec Engineer - (2-4 Yrs) (Job Code : J47276)  

 Job Summary
Share this job on Facebook  Share this job on Twitter  Share this job on Linked In
2.00 - 4.00  Years 
InfoSec Engineer - (2-4 Yrs)
BCA, BCS, BE-Comp/IT, BE-Other, BSc-Comp/IT, BSc-Other, BTech-Comp/IT, BTech-Other
Educational Level:
Stream of Study:
Industrial Type:
IT-Software/Software Services
Functional Area:
IT Software - Other
Key Skills:
Audit, ISO
Job Post Date:
2023-11-02 18:30:11  

 Company Description
Our Client was founded by 3 IIMers in the year 2000. Client is an electronic presentment technology and payment services company. The Company is focused on leveraging technology to enable banks,businesses and other institutions to present invoices, statements and bills to
consumers or businesses and receive payments against them.

Their Product powers electronic payments and collections services for the largest banks and companies in India and also manages the bill payment service of Visa in India. It operates as a neutral service bureau aggregating multiple banks, billing companies and other corporations onto a common standards-based platform for delivering electronic payments and collection services across multiple electronic channels.

Their Product manages these services across a range of access channels viz. Internet Banking, ATM Banking, Tele Banking, Mobile Banking etc. The Payment Gateway services of our Client enable customers to pay online using either their electronic banking accounts or credit cards.

 Job Description
Work Location: Andheri (W) - Near Azad Nagar Metro Station.

Duties and Responsibilities
• Implement and maintain the Information Security Management Systems (ISMS) as per requirements of the PCI DSS, ISO 27001:2013 standards and applicable regulatory requirements
• Conduct independent internal reviews or through external qualified agencies as per the standards and business requirements
• Identify and formulate the Company’s approach to risk assessment and management and the level of assurance required for the all existing and new information processing facilities
• Responsible for review of user rights in access control systems
• Responding to questionnaires received from customers.
• Responsible for handling customers audits.
• Review Information Security policies & create incident response procedures
• Liaise with external bodies such as external security systems consultants, Certification Body, on matters relating to the ISMS
• Responsible for implementing the information security requirements of the organization`s Privacy Program

Skills required
• Knowledge of technical domains such as network security, cloud security application security, control testing, legal and compliance, data privacy, human resource related controls, supply chain, environmental security, cryptography.
• Knowledge of concepts such as vendor risk profiling, country risk assessment, outsourcing/ technology regulations some exposure
• Strong Auditing & Auditee skills is desired.
• Excellent written and verbal communication skills.
• Ability to work well in teams.
• Demonstrate integrity, values, principles, and work ethic and lead by example.

Qualities/ Competency necessary
• Relevant Experience in Information security, vendor/ supplier/ third party risk assessment,
• Good knowledge of standards such as ISO27001, PCI-DSS, ISO22301, privacy etc.