Senior Manager - Information Security (8-10 yrs)

Manager/Sr Manager Information Security[Mumbai, Lower Parel ,5 Days, WFO].

Education :

- Engineering Graduate/postgraduate or Global Equivalent Degree.

- CISSP, CISM, CISA certifications (any one or more).

Experience :

- 8-10 years of relevant work experience.

- In-depth knowledge of network protocols and network connectivity concepts.

- Knowledge of various information security standards such as ISO 27001, ISO 27018, NIST etc.

- Proficiency in firewall and internet technologies.

- Well conversant with technologies such as SIEM, IAM, AV/EDR, DLP etc.

- Good understanding of cloud security especially in AWS and Azure domains.

- Familiarity with secure access control mechanisms.

Duties & Responsibilities :

Information Risk Management and Compliance :

- Develop and implement a robust Information Risk Management Framework for the organization.

- Drive all Information Security activities, including compliance with ISO 27001, ISO 27018 standards, updates, user training and awareness, and internal audits to ensure full compliance with policies and procedures.

- Ensure compliance with ISO 27001 standards, collaborate with the IT teams to deploy security controls across all visa application centres.

- Respond to RFI/RFPs shared by customer teams on business requirements including security and privacy.

- Liaise with Security operations MSP and ensure timely incident remediation.

- Select new security solutions, onboard and integrate it with current technology suite.

- Translate business requirements to security requirements and ability to propose solution and lead the implementation aspects.

- Lead third party risk management program for new and existing vendors including pre-screening, onboarding, ongoing governance and offboarding.

- Establish strong partnership with various functions such as IT, Legal, HR, business and other key stakeholders.

Security Enhancement and Awareness Initiatives :

- Lead initiatives for continuous improvement in Information Security controls.

- Design and implement an Information Security awareness program to foster best practices.

- Implement safeguards to minimize the risk of data leakage and ensure high standards of Information Security service delivery within time and budget.

Collaboration and Strategic Alignment :

- Act as the single point of contact for Information Security needs, coordinating with the business account management teams to align with business objectives and strategies.

- Collaborate with regional teams to uphold Information Security best practices and standards across all operations.

Team Management & Succession Planning :

- Manage and develop staff, including performance management, training, and career development.

- Create and maintain a robust talent pipeline to ensure succession planning.