Assitant Manager - Information Security (5-6 yrs)

Job Summary/Purpose :

Information Security Assistant Manager will be responsible for implementing and monitoring IT security strategies for all platforms across IT function with organization. He will provide assistance to manage the risk to the platform assigned and will ensure business alignment, effective governance, system and infrastructure availability, integrity and confidentiality.

Key Accountabilities :

- Develop and maintain robust security controls to protect Organization business from security breaches/ incidents.

- Deliver Security demand from the business for security controls.

- Knowledge of advance security tools implementation and Management. E.g. SIEM, DLP, SOAR, EDR, XDR, etc.

- Maintain a good relationship with key stakeholders including business, other IT departments & security teams to deliver on security requirements timely and effectively.

- Engage with internal/ external auditors to acquire and retain certifications/ attestations

- Support audits by timely response, escalation management, gap analysis, mitigation etc.

- Conduct supplier Assessment to check their compliance with security schedule

- Drive education and awareness activities across platform.

- Provide direction for IT Security and Cybersecurity protection, and oversee Technology governance and policies.

- Develops, maintains and publishes up-to-date security policies, standards and guidelines.

- Oversees development of security awareness programs.

- Evaluates potential security breaches, coordinates response, and recommend corrective actions.

- Define and report on information security KPIs.

- Specialized in a number of Security domains such as incident response, operational assessment of security posture, general security management.

- Experience working with external stakeholders in law enforcement, audit, testing, investigations, and intelligence.

- Monitor, evaluate and change the organization as needed to ensure success in managing Security

- Responsible for formulating long term security policy for their domain

- Is responsible for the security schedules of major global contracts and the supplier integration and delivery of secure services as contracted. This includes managing all service delivery components and coordination of supplier teams delivering services.

Skills :

- An understanding of business needs and commitment to delivering high-quality, prompt and efficient service to the business.

- An understanding of organizational mission, values and goals and consistent application of this knowledge.

- An ability to perform independent analysis of complex problems and distill relevant findings and root causes.

- An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative and actionable manner.

- A team-focused mentality with the proven ability to work effectively with diverse stakeholders.

- Self-motivated and possession of a high sense of urgency and personal integrity.

Education Qualifications & Requirements :

- Bachelor's or Master's degree in Information Technology or Computer Science

- 5-6 years of experience in Information security Management

- Minimum Certified ISO 27001 Lead Auditor/ Lead Implementer

- Typically a background in technical security roles or operations, with a clear and abiding interest in security