Job Details

As a responsible Information Security Lead-

• Prevent and mitigate any financial loss to the company on account of Digitisation.
• IT Project ROI and business case.
• Ensure business continuity.
• Business Engagement with IT.
• Balance Security compliance and user flexibility to provide secure yet user friendly IT systems.
• Achieve zero downtime of IT systems and applications on account of any security violations or risks.
• Create and maintain the enterprises security architecture design, security awareness training program, security documents (policies, standards, baselines, guidelines and procedures), Business Continuity Plan and Disaster Recovery Plan, where appropriate.
• Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers (internal and cloud) and other systems and in databases and other data repositories.
• Design and execution of vulnerability assessments, penetration tests and security audits.
• Perform regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents
• Create monthly information security scorecards.
• Manage deployment, integration and configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprises security documents specifically.
• Perform regular security awareness training for all employees to ensure consistently high levels of enterprise security compliance.
• Handle Emergency Response and Crisis Management, Physical Access control, Information Protection, Incident Management and/or Investigation.
• Responsible for providing CIO, advice and counsel on security policy and practices. Identifies exposures and to recommend and develop corrective plans as appropriate.
• Zero disruption of business by taking proactive measures in identifying and mitigating risks.
• Achieve and sustain ISO 27001 and ISO 22301.
• Business value creation and ROI from IT Security initiatives and Projects.
• Select and acquire security solutions or enhancements to existing security solutions to improve overall enterprise security.

Information Security Lead Should have -

• CISSP Certification is mandatory.
• CEH, CISM certifications shall be a definitive advantage.
• ITIL Certification preferred.
• Work Experience Requirements
• Essential (The Minimum and Maximum Experience required for this position to perform effectively) Additional (Any special work experience (in a particular position / department / industry) required for this position to perform effectively)
• Preferably worked in : Industries IT Service Providers.