Compliance Lead 1

Job Description

Description **Cyber Security Compliance officer C2 8 to 10 years Primary Skills (Must Have)-Must have very strong technical expertise around Cyber Security -Must have experience in Cyber Security Risk, Compliance and Data privacy -Understanding on ISO 27001:2013 Audit -Third party risk management (TPRM) - Secondary Skills (Nice to have)-CIS Benchmark hardening (Knowledge in Unix, Windows, Active Directory, networking principles including TCP/IP) -Knowledge of Security tools for Vulnerability Management, Privilege Identity management Personal Qualities-Excellent written and verbal communication skills -Self-driven and able to work single handedly -Ability to multi-task, prioritize, coordinate, work well under pressure and meet deadlines -Analytical and methodical approach to problem solving -Good in stakeholder management - Key Responsibilities-Play a role in the delivery of GRC consultancy services, customer facing -Support customer to deliver IT Security Governance to attend Security Working Groups with customer -Develop risk management controls and systems -Vendor Risk assessment -Oversee and manage the GRC risk assessment and security exception process -Evaluate moderate to complex business and technical requirements, and communicate inherent security risks and provide recommendations for mitigating controls to technical and non-technical stakeholders -Provide potential security related Service improvements -Review potential remediation options to address vulnerabilities discovered by scanning and provide input into recommendations -Support investigations into abnormal User activity as a result of a security investigation -Review changes to the ISMS proposed by customer and provide appropriate documented updates to the processes, roles and responsibilities -Provide security risks related to the Cyber Services -Ability to adhere to strict quality and change management process Additional Remarks for considerationInvolves researching, developing, innovating and delivering effective and consistent solutions to support the infrastructure systems ensuring the application of current and emerging technologies. Education / Certifications / TrainingsDegree in Computer Science, Information Technology, Information Services, or similar Shift Timing (9x5,24x7)Europe time, one shift Job Location (Bangalore/Pune /Mumbai)Mumbai, Bangalore Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills risk analysis;security risks Languages RequiredENGLISH Role Rarity To Be Defined