Information Security Leader - Remote Opportunity

Job Description

If Interested, please share your CV at dhanashree.kumbhare@randstad.in This is a remote Opportunity. Position: Information Security Lead Educational Qualification and Certifications Certifications: Preferably Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) Computer Science, Information Technology, Cybersecurity or allied degree Required Skill Set 12+ years experience in Information Security domain leading Info Sec functional responsibilities Experience in security technologies and processes Experience managing organizational cyber risk management Experience in applicable data and cyber related regulations and compliance requirements Job Description/ Responsibilities This role will be responsible for developing and implementing information security strategies, policies, procedures, managing the security architecture and infrastructure and ensuring compliance with relevant regulations and industry standards. Info Sec Leader will directly oversee activities to protect Companys data and systems. Strategic Planning and Risk Management: Manage information security strategy, policies, procedures, including a comprehensive risk management framework. Identify, assess, and mitigate information security risks. Proactively, identify gaps and address vulnerabilities. Maintain policies for data governance, access control, and acceptable use of assets. Ensure data security especially around PII/ sensitive data. Work closely with the IT/ Network/ Infrastructure and Product teams to monitor Company assets on a regular basis and ensure end points are secure per Companys established policies. Security Architecture: Review, manage and maintain security architecture of Company assets, ensuring it aligns with business needs and security requirements. Work closely with the product development stakeholders to develop and maintain security architecture for overall DvSum applications. Security Compliance: Ensure compliance with relevant laws, regulations, industry standards and certifications such as SOC2, HIPAA, and GDPR. Security Incident Response: Manage security incident response plan and procedures. Establish crisis communication framework and disaster recovery plan to respond and recover from security breaches. Security Awareness and Training: Manage security awareness and training programs for employees. Technology Monitoring and Evaluation: Monitor and evaluate technologies and solutions which can enhance Companys security system. Communication and Collaboration: Communicate security risks and status reports to stakeholders. Team Leadership: Lead Info Sec activities in collaboration with cross functional stakeholders from IT/ Infrastructure/ Product Development functions. Provide Info Sec guidance and mentorship to team members.