Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Bajaj Allianz General Insurance

Compare

3.9

based on 2.3k Reviews

268 Bajaj Allianz General Insurance Jobs

Lead Information and Cyber Security

Bajaj Allianz General Insurance Company Ltd.

3.9

based on 2.3k Reviews

3-8 years

Pune

1 vacancy

Lead Information and Cyber Security

Bajaj Allianz General Insurance

posted 13d ago

Job Role Insights

Flexible timing

Key skills for the job

Analytical Chemistry Risk Management Information Security Vulnerability Management CCTV Monitoring Cisa

+ 4 more

Job Description

Overview

The Governance Manager for SOC, DLP, and VAPT is responsible for overseeing the governance, risk, and compliance activities across the Security Operations Center (SOC), Data Leak Prevention (DLP), and Vulnerability Assessment and Penetration Testing (VAPT) functions. This role ensures that these critical areas operate in alignment with industry standards, regulatory requirements, and internal policies. The Governance Manager will establish and enforce policies, procedures, and controls to safeguard the organizations information assets and mitigate risks.

Key Responsibilities

SOC Governance

Governance Framework: Develop, implement, and maintain the governance framework for the SOC, ensuring alignment with industry best practices and regulatory requirements.
Policy Development: Create, review, and update security policies, standards, and procedures to ensure they are effective and up-to-date.
Risk Management: Identify, assess, and mitigate security risks related to SOC operations. Develop risk management strategies and monitor the effectiveness of risk mitigation measures.
Incident Response Oversight: Oversee the incident response process, ensuring that incidents are managed and resolved in accordance with established protocols.
Training and Awareness: Develop and deliver training programs to enhance the security awareness and skills of SOC staff. Ensure that all team members are knowledgeable about governance and compliance requirements.

Key Responsibilities

DLP Governance

DLP Strategy: Develop, implement, and maintain the DLP strategy and framework, ensuring alignment with industry best practices and regulatory requirements.
Policy Development: Create, review, and update data protection policies, standards, and procedures to ensure they are effective and current.
Risk Assessment: Conduct regular risk assessments to identify and mitigate potential data leakage risks. Develop risk management strategies and monitor their effectiveness.
Incident Response: Oversee the data breach and incident response process, ensuring that incidents are managed and resolved according to established protocols.
Monitoring and Analysis: Implement and manage DLP tools and technologies to monitor data flows and detect potential data leakage. Analyze DLP alerts and incidents to identify trends and areas for improvement.
Training and Awareness: Develop and deliver training programs to enhance the data protection awareness and skills of employees. Ensure that all team members are knowledgeable about DLP policies and procedures.

Key Responsibilities

VAPT Governance

VAPT Program Management: Develop, implement, and maintain the VAPT program, ensuring alignment with industry best practices and regulatory requirements.
Policy Development: Create, review, and update policies, standards, and procedures for vulnerability assessment and penetration testing to ensure they are effective and current.
Risk Assessment: Conduct regular risk assessments to identify and mitigate potential vulnerabilities. Develop risk management strategies and monitor their effectiveness.
Testing Oversight: Oversee the planning, execution, and reporting of vulnerability assessments and penetration tests. Ensure that findings are documented, prioritized, and remediated in a timely manner.
Incident Response: Collaborate with the incident response team to address security incidents and breaches related to identified vulnerabilities.
Continuous Monitoring: Implement and manage tools and technologies for continuous monitoring of vulnerabilities. Analyze vulnerability data to identify trends and areas for improvement.
Training and Awareness: Develop and deliver training programs to enhance the security awareness and skills of employees. Ensure that all team members are knowledgeable about VAPT policies and procedures.

General Responsibilities

Compliance Management: Ensure compliance with relevant security standards and regulations across SOC, DLP, and VAPT. Conduct regular audits and assessments to verify compliance.
Risk Management: Identify, assess, and mitigate security risks related to SOC, DLP, and VAPT operations.
Reporting and Metrics: Develop and maintain key performance indicators (KPIs) and metrics to monitor the effectiveness of the governance programs. Prepare and present reports to senior management.
Collaboration: Work closely with other departments, such as IT, Legal, and Compliance, to ensure a cohesive approach to security governance.
Continuous Improvement: Promote a culture of continuous improvement within SOC, DLP, and VAPT programs. Identify areas for enhancement and implement best practices.

Qualifications

Education: Bachelors degree in Information Security, Computer Science, or a related field. A Masters degree is preferred.
Certifications: CEH / OSCP, and Any one of CISA, CISSP, CISM, CRISC, or other relevant certifications.
Experience: Minimum of 5 years of experience in information security governance, risk, and compliance with specific experience in a SOC, VAPT and DLP.
Skills:
- Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST).
- Understanding of regulatory requirements
- Strong analytical and problem-solving skills.
- Excellent written and verbal communication skills.
- Ability to work independently and as part of a team.
- Strong project management skills.