Information Security Manager

Job description - Information Security Manager

Role & responsibilities

-Shall be accountable for interpreting the RFI/RFP, or Customer queries, and responding

to them.

-Review Contracts/MSA/DPA to ensure they include appropriate risk-related clauses,

such as security controls, data privacy, liability, and business continuity terms.

-Shall be accountable for assessing vendors or suppliers to identify potential risks in

areas such as cybersecurity, data protection, regulatory compliance, and operational

resilience.

-Participate in meetings with customers, partners, and vendors and be accountable for

handling security/privacy-related discussions.

-Work closely with IT, HRD, L&D, and other teams to close any Customer audit

observations, and shall be accountable.

-Shall be accountable for tracking the external advisories/threat intelligence to closure.

-Shall be accountable for Enterprise Risk Management.

Eligibility Criteria

-Must have 5 years in a Customer/Vendor role responsible for Responding, clarifyingand reviewing Contracts around below standards/models/industry best practices andtheir mapping to Organizational Practices.

-In-depth knowledge of standards and frameworks such as ISO 9000, ISO 27001, PCIDSS, SOC 2, CMMi, NIST, HIPAA, GDPR, and CCPA.

-Must have led the implementation of security standards like ISO 27001, PCI-DSS, SOC2, etc.

-Knowledge of privacy regulations like GDPR, PDPD, DPDPA, etc. is preferred.

-Must have faced or facilitated customer or external audits.

-Proven experience in quality assurance, compliance, and risk management. At leastmore than 7 years of experience in managing the audit.

-Excellent communication and interpersonal skills.

-Strong analytical skills and attention to detail.

-Ability to work collaboratively with cross-functional teams.

-Must have managed a team of more than 3 members at least for 5 years.

-Certification in Quality Assurance or Information Security (e.g., ISO 9001 Lead Auditor,ISO 27001 Lead Implementer, CEH) will be preferred.

Role: IT & Information Security - Other

Industry Type: Software Product

Department: IT & Information Security

Employment Type: Full Time, Permanent

Role Category: IT & Information Security - Other

Education

UG: B.Tech/B.E. in Computer Science Engineering, Information Technology, Computer

Science, Cyber Security, Computers

PG: MCA in Any Specialization, MBA/PGDM in Information Technolog