Cyber Security Professional

Job Description

erform Technology Risk Assessments for processes, technologies Develop and review IS standards, guidelines for new technologies Periodic audits and assessments as per Infosec calendar Be responsible for setting IS Standards, Checklist, Guidelines such as: IS guidelines and any supporting templates; Standards for Technology Risk Assessments (TRA) for any process / technology change or new technology sourcing Manage internal / third party Ethical hacking / Vulnerability Assessment / Penetration Testing, Red Team assessment activities etc. Methodology / checklist for performing the TRA and approval matrix based on the results of the TRA BCP / DR standards including methodology for conducting Risk Assessment (RA) and Business Impact Analysis (BIA) Application security and Vendor risk assessment standards IS related trainings standards including frequency for IS related trainings for employees / contractors and the IT / IS teams Security testing baselines for conducting Vulnerability Assessment and Penetration Testing of IT systems (infrastructure and applications) including mandating the use of internal and external vendors based on asset classification Liaising with the business teams to define the roles within each application under their purview depending upon the business requirements Shall review the training / skill set requirements for the SOC / LAM / DLP teams Manage Information Security Projects/assessments etc Perform daily InfoSec operational activities like FnF Clearance, approvals etc. Conduct or participate Cyber security drill as per the requirement Perform daily InfoSec operational activities and Monitor, manage Information/Cyber Security Incidents