Assistant Manager Infosec

We are seeking a talented and dynamic Assistant Manager to join our team who has a good exposure towards managing the projects relating to Information security domain and privacy protection from scratch
Experience: 3+ yearsKey Objective And ResponsibilitiesAs an Assistant Manager, you will be entrusted with the following key responsibilities:Experience in leveraging industry standards and frameworks such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc, to assist clients in compliance and governanceDesign and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguardedEvaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvementProvide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy lawsData Audits and Assessments: Conducting regular data protection impact assessments (DPIAs) and audits to identify and mitigate privacy risks associated with data processing activitiesConduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal levelFoster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needsAssist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practicesContribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworksUtilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidentsDemonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentialityRequirementsTo be considered for this role, the candidate must meet the following requirements:Hold relevant qualifications such as CIPP/E, CIPM, FIP, DCPLA, CDPO/IN, CDPO/P, ISO 27001 LA/LI, ISO 27701 LApreferredMinimum 3 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering and/or data protectionPossess a sound knowledge of fundamentals of information security systemsExhibit a good understanding of GDPR, CCPA, or other privacy lawsDisplay competence in governance and reporting, as well as a strong grasp of cyber and privacy risksShowcase excellent communication skills, both written and verbalProficiency in Microsoft Office Suite (Word, Excel, Power point)