Search by job, company or skills

ITC Infotech India Limited

Security Auditor

ITC Infotech India Limited
Bengaluru
5-10 Years
Save
new job description bg glownew job description bg glownew job description bg svg
  • Posted 4 hours ago
  • Be among the first 10 applicants
Early Applicant
Quick Apply

Job Description

  • Responsible for reviewing, maintaining, and updating security policies, procedures, and standards/baselines.
  • Support all accreditation programs such as ISO27001, ISAE 3402 Type II, SOC2 Type 2, PCI-DSS and others as may be needed.
  • Work with different stakeholders including external auditors, business leaders, DPO, Legal, HR, and CIO teams to understand all critical security requirements.
  • Drive security compliance monitoring.
  • Risk assessment for information security and cyber risks
  • Adoption of global frameworks such as NIST Cyber Security and CIS etc.
  • Work with internal Marketing team and external vendors for developing security awareness program.
  • Support Business Continuity program including BC Plans, Crisis Management etc.
  • Perform internal security audits. Manage certifications such as ISO 27001, SOC etc.
  • Perform security audits on application and IT infrastructure including but not limited to network, operating systems (Windows and Linux), databases, access control, Firewalls, IDS/IPS, Web Application Firewalls, Proxies, Cloud infrastructure (Azure and Amazon), Web servers, data center, Email infrastructure, VPN infrastructure, routers, backups, Disaster Recovery, Endpoint Security.
  • Perform security audits to ensure that controls related to these processes are adequate to mitigate risks.
  1. Perimeter/Internal Security Technologies (Firewalls, IDS/IPS, Proxy, WAF etc.)
  2. Data Loss Prevention technologies and support processes
  3. Network Segmentation and Separation Solutions
  4. Identity and Access Management, Privileged Access and Authentication Solutions
  5. Platform and Configuration Hardening
  6. IT incident and problem management
  7. Threat Intelligence and Insider Threat Detection
  8. Vulnerability assessment, Penetration Testing, and its mitigation
  9. Security Incident and Event Management (SIEM) Technologies
  10. Cyber Incident and response
  11. Change Management
  12. Role Based Access Controls
  13. Business continuity and Disaster Recovery
  • Vendor security assessments

Minimum Qualification & Background:

  • 5-10 years of relevant experience
  • Graduate with one or more professional certifications: ISO27001 LA, CISA, CRISC, CISSP and CISM
  • Must have experienced a complete ISO27001 journey for a few years at a minimum.
  • Knowledge and understanding of ISO27001, ISO27002, ISO27017, ISO27018, PCI DSS, NIST cyber security standards and CIS benchmarks.
  • Must have performed audits of the cloud infrastructure.
  • Knowledge and understanding of security related technologies and cloud security.
  • Excellent written and verbal communication skills; Documentation and presentation skills

More Info

Job Type:
Permanent Job
Industry:
Security
Role:
Security Manager
Function:
Guards/Security Services
Employment Type:
Full time
Open to candidates from:
Indian

Job ID: 106961409

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 28-04-2026 07:23:11 AM
Homejobs in Bengaluru / BangaloreSecurity Auditor

Similar Jobs

Cyber Security Analyst

ITC Infotech India Limited

Finance Executive

Diensten Tech Limited

Package Specialist-SAP HANA Application Security

IBM
I

Change Manager

Cradlepoint
C

Control Governance & Control Sr Manager

Wells Fargo