Associate Information Security Analyst – India – 2 to 5 Years Experience
Job Overview
-
Date Posted21 August 2024
-
Location
-
Expiration date25 October 2024
-
Experience2 Year
-
GenderAny
Job Description
The selected candidate will support the Senior Information Security and Privacy Program, focusing on the effectiveness of the program through monitoring, documentation, and hands-on activities related to information security, privacy, and audit & risk management.
Responsibilities:
- Supervise the team in maintaining policies, procedures, and documentation.
- Perform internal and external security audits, IT risk assessments, and ensure compliance with clients’ policies and external regulations.
- Assist in conducting information security awareness sessions.
- Manage technology risk assessments, reporting on findings, remediation plans, and track the status of projects.
- Interact with clients and support engagements in GRC (Governance, Risk, and Compliance), security, and privacy-related internal audits.
- Conduct process reviews, develop standard operating procedures, and manage risk.
- Assist in developing new solutions and methodologies for project deliverables.
- Prepare written deliverables and presentations.
Job Requirements
• Qualifications: BE/B.Tech, MSc, MCA or equivalent.
• Certifications:
• Mandatory: Lead Auditor ISO 27001
• Preferred: CISM, CISSP, CEH, CompTIA Security+
• Good to Have: ISO/IEC 27001 LA
• Skills & Experience:
• Strong knowledge of ISO 27001, ISO 27002, ISO 9001, ISO 22301
• Basic understanding of privacy laws such as GDPR and the Personal Data Protection Bill
• Experience in conducting security audits and assessments (information, network, application)
• Proficiency in MS Office (Word, Excel, PowerPoint, Access)
• Excellent organizational, communication, and presentation skills
• Experience in the Information Security and Audit industry is preferred
Preferred Qualifications
• Practical experience in information security, privacy, compliance, audit, and risk assessment (ISO 27001) in a regulated environment.
• Hands-on experience in the implementation of advisories, patches, and security updates across various platforms.
• Record-keeping for compliance covering all types of IT/Information Security audits.
• Experience in updating policies and procedures related to information security and privacy.
About the Company
CyberSRC Consultancy Pvt Ltd is a leading firm specializing in cybersecurity and information security services. Our team is dedicated to providing innovative solutions to manage risks and secure critical information for clients across various industries.