Information Technology Manager

POSITION DESCRIPTION JOB TITLE Cyber Governance Manager GRADE CM DEPARTMENT Risk - LOCATION HO SUB-DEPARTMENT Information Security TYPE OF POSITION Full-time II. ROLE PURPOSE & OBJECTIVE The Cyber Governance Officer under the direct supervision of the CISO is responsible for planning and development of information security policies. Plans and manages information security compliance audits and reviews in line with the ISMS Internal audit plan and request / advice from the CISO and as per the security assessment and compliance policy. Cyber Governance Manager - Job Description Business/ Financials Planning and developing security policy and standard documents. Periodically reviewing the policy and standard documents. Plan and manage information security compliance audits and reviews in line with the ISMS Internal audit plan and request / advice from the CISO and as per the security assessment and compliance policy. Supporting Ujjivan’s IS compliance. Planning, delivering and managing information security awareness initiatives within Ujjivan. Acting on threat intelligence Management of Application security Audits/Vulnerability Assessments/Penetration Testing/Red Team Exercises Management of Cyber Drills Privacy Framework Implementation Customer Keeping customer information safe and secure. Internal Process Adhering to information security policy procedure and guidelines. Working on improving internal process for better security and efficiency. Learning & Innovation Should continuously work on gaining and improving information security updates on best practices, new threats and countermeasures to secure the Ujjivan information security. V. MINIMUM REQUIREMENTS OF KNOWLEDGE & SKILLS Educational Qualifications Bachelor’s degree in Computer Science or related field. Experience 7-8 years Certifications CISM/CISSP/CISA/CRISC/ISO/IEC27001 Functional Skills Experience in Information security governance and management. Must have hands on experience in risk assessment and training Knowledge of ISO 27001, 31000, COBIT, NIST Frameworks related to Information Security, Privacy Frameworks such as GDPR, familiarity with RBI Cyber Security Framework. Show more Show less