Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

American InfoSource

Compare

3.3

based on 143 Reviews

Video summary

23 American InfoSource Jobs

Risk Manager Information Security & Governance

American InfoSource Business Solutions Pvt Ltd

3.3

based on 143 Reviews

8-13 years

Vadodara

1 vacancy

Risk Manager Information Security & Governance

American InfoSource

posted 3mon ago

Job Role Insights

Fixed timing

Key skills for the job

Data Analytics Back Office Social Work Information Technology Automotive Engineering Risk Management

+ 3 more

Job Description

1. Information Security Management:

Develop, implement, and maintain information security policies, standards, and procedures to ensure the protection of sensitive information.

Perform regular security risk assessments and vulnerability assessments to identify and address potential threats.

Lead the development and execution of security awareness training programs for employees to foster a culture of cybersecurity awareness.

Manage and maintain security tools and technologies (e.g., firewalls, encryption software, intrusion detection systems).

2. Governance, Risk, and Compliance (GRC):

Establish and maintain an effective governance framework to ensure compliance with relevant regulations (e.g., GDPR, HIPAA, SOX, ISO 27001).

Ensure that information security policies and practices align with business objectives and legal/regulatory requirements.

Conduct regular audits and assessments of systems, processes, and operations to assess adherence to security standards and identify areas of improvement.

Support Risk management meetings collate information, prepare deck, etc.

Support organization in formulating and driving Environmental, Social and Governance goals.

3. Incident Response & Management:

Act as a key member of the incident response team, coordinating responses to security breaches or incidents.

Maintain detailed documentation of security incidents and conduct post-incident reviews to improve future responses.

4. Reporting & Documentation:

Prepare and present security and compliance reports for senior leadership, including updates on risk assessments, audits, and mitigation efforts.

Maintain accurate records of all security activities, incidents, and compliance initiatives

SUPERVISORY RESPONSIBILITIES:

This position does not have supervisory responsibilities.

LANGUAGE REQUIREMENTS

Required English Ability Level Business Fluent Required Hindi/Gujrati Ability Level Business Fluent

QUALIFICATIONS:

8+ years of experience in Information Security, IT Governance, Risk Management, or related fields.

Proven experience in implementing and managing security frameworks (e.g., NIST, ISO 27001).

Hands-on experience with security tools such as SIEM, firewalls, and endpoint protection systems.

Strong understanding of information security concepts, risk management processes, and compliance requirements (e.g., GDPR, PCI-DSS, SOC 2).

Familiarity with security frameworks such as NIST, ISO 27001, and ITIL.

Experience in conducting security audits, vulnerability assessments, and risk assessments.

Proficiency in security tools (e.g., firewalls, intrusion detection/prevention systems, SIEM solutions).

Knowledge of data privacy laws and regulations (GDPR, CCPA, HIPAA, etc.).

Excellent communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.

Strong problem-solving skills and the ability to work independently and in a team.

Bachelor s degree in information security, Computer Science, Information Technology, or a related field. Master s degree preferred.

LANGUAGE SKILLS:

Ability to read, analyze and interpret the most complex documents. Ability to respond effectively to the most sensitive inquiries or complaints. Ability to write emails, speeches and articles using original or innovative techniques or style. Ability to make effective and persuasive speeches and presentations on controversial or complex topics to top management, public groups and clients.

MATHEMATICAL SKILLS:

Ability to choose the right mathematical methods or formulas to solve a problem. Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals quickly and correctly.

REASONING ABILITY:

Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.

CERTIFICATES, LICENSES, REGISTRATION:

Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, or similar certifications are highly desirable.

Employment Type: Full Time, Permanent

Read full job description

Prepare for Information Security Manager roles with real interview advice