Information Security Officer/ SOC2 Officer

Dear Candidates,

Invimatic Technologies Pvt Ltd is currently seeking an experienced Information Security Officer for our office located in Kalyani Nagar, Pune.

Position: Information Security Officer
Experience: 7+ years
Location: Pune (Kalyani Nagar)

Job Summary: The Chief Information Security Officer (CISO) will be responsible for developing, implementing, and managing a comprehensive information security program that ensures the Security, confidentiality, integrity, privacy and availability of our customers data. The CISO will play a critical role in guiding the organization through the SOC 2 compliance process, ensuring that all necessary controls are established and maintained to meet SOC 2 standards.

Key Responsibilities:

Strategy Development:

1. Develop and implement an information security strategy aligned with the companys goals and objectives.
2. Establish a road-map for achieving SOC 2 compliance and continually assess compliance against SOC 2 criteria.

Policy and Procedure Creation:

1. Create and enforce information security policies, procedures, and standards to ensure compliance with SOC 2 requirements.
2. Ensure the policies are regularly updated and communicated to all employees.

Risk Management:

1. Identify, assess, and mitigate information security risks related to company operations and data management.
2. Conduct regular risk assessments and audits to evaluate the effectiveness of security controls.

Team Leadership:

1. Lead the information security team, fostering a culture of security awareness and compliance throughout the organization.
2. Provide guidance and mentorship to team members in implementing security best practices.

Stakeholder Collaboration:

1. Work closely with executive leadership, IT, legal, and compliance teams to ensure alignment on security initiatives and SOC 2 compliance efforts.
2. Serve as the primary point of contact for internal and external stakeholders regarding security and compliance matters.

Training and Awareness:

1. Develop and implement a security training and awareness program for all employees to promote a culture of security.

Incident Response and Management:

1. Oversee the incident response plan and ensure timely and effective responses to security incidents.
2. Lead post-incident analysis to identify areas for improvement and prevent future occurrences.

Continuous Improvement:

1. Stay informed about industry trends, threats, and regulatory changes that may impact information security and compliance.
2. Continuously evaluate and improve the organizations information security posture and compliance with SOC 2 standards.

Qualifications:

• Bachelors degree in Information Security, Computer Science, or a related field; Masters degree preferred.
• Minimum of 6-10 years of experience in information security, with a focus on compliance (SOC 2 preferred).
• Proven experience in implementing and managing security frameworks and compliance programs.
• Strong understanding of SOC 2 requirements and best practices.
• Relevant certifications such as CISM, CISSP, or CISA are highly desirable.
• Excellent leadership, communication, and interpersonal skills.