Chief Information Security Officer

14-16 years
2 months ago 16 Applied
Job Description

Principal responsibilities are:
. Developing and implementing an Information Security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats.
. Proactively monitor and assess the IT infrastructure/applications of the company to ensure that the security of IT systems are maintained.
. Provide Strategic Risk guidance for IT projects, including the evaluation and recommendation of technical controls.
. In charge of IT Risk evaluations, Audits, BC/DR Management, Vulnerability management, SOC 24-7 and Security incident investigation.
. Establish Threat modelling framework and Secure SDLC framework to ensure all the production application are 100% complaint to a framework.
. Track interesting trends on emerging technologies that are relevant to information security and take advantage of such technology trends.
. Develop enterprise Data Loss Prevention frameworks to ensure data integrity, confidentiality and availability controls are in place during all the states of Data life cycle.
. Ensure policies, processes, procedures and technology implementation that addresses Critical Business Process Identification, Departmental Risk, Sensitive Information, Systems Security Planning, Systems Configuration Management, Vulnerability Management, Electronic Discovery, as well as Compliance Management.

Skills required for the role:
. Experience in Information security operations, Threat Intel & Hunting and SOC Continuous Monitoring.
. Hands-on experience on Threat Intelligence platforms for effective and timely decision making.
. Prior cyber incident response experience and/or experience working in high tempo cyber operations environments.
. Highly analytical, detail-oriented, and strong problem solving with a common-sense approach to resolving problems.
. Expertise to clearly define complex issues despite incomplete or ambiguous information.
. Strong communication and stakeholder management skills to navigate a large organization.

Educational Qualifications:
. Bachelors/Masters degree in Computer Science, information technology or Cybersecurity.
Certifications like CISSP, CISM, CISA, CEH are preferred

Years of Experience:
. This position requires minimum 14+ years of relevant experience

. Mumbai



Information security operations
BC/DR Management
Threat modelling framework
Data Loss Prevention frameworks
Secure SDLC framework
Threat Intel & Hunting
Systems Configuration Management
Security incident investigation
SOC Continuous Monitoring
SOC 24-7
IT Risk evaluations
Critical Business Process Identification
Threat Intelligence platforms
cyber incident response
Departmental Risk
Systems Security Planning
Job Source:

People Also Considered

Career Advice to Find Better