Infrastructure Cloud Risk Assessment Manager

Essential Services : Role & Location fungibility

One Bank, One Team

About the role

We are looking for a skilled professional to join our Information Security Team as an Infrastructure Cloud Risk Assessment Manager. The candidate is expected to have a solid understanding and experience of major cloud-native architectures, expertise in identity and access management, familiarity with various data encryption methods, and knowledge of cloud compliance regulations.

Key Responsibilities

• Identifying Vulnerabilities:

  Understanding of cloud architecture review, and virtualization. Conduct cloud security assessments, across but not limited to the following domains:

* Network and Perimeter Security

*Data Protection and Backup Management

* Identity and Access Management

* Log Management and Monitoring

• Analysis:

  Identify and analyse the risks associated. Provide recommendations for the identified findings and develop the road-map.

• Implement Security Measures:

  Develop and implement robust security measures for cloud environments, ensuring the confidentiality, integrity, and availability of data. Contribute in creating and enforcing security policies, procedures, and best practices across the organization.

• Reporting:

  Contribute in creating and enforcing security policies, procedures, and best practices across the organization.

• Collaborate:

  Work closely with cross-functional teams to integrate security controls seamlessly into cloud-based architectures and applications. Collaborate with other IT professionals, including network engineers, developers, and system administrators, to integrate cloud security measures into existing systems and processes.

Qualifications & Skills

• Educational Qualification:

  Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent.

• Certifications:

  Relevant certifications such as CISSP, CISM, AWS Certified Security, etc.

• Compliance:

  Assist in securing the IT landscape/ecosystem built on-premises and multi-cloud environment. As an enterprise Network Security architect in the security domain crafted to ensure availability, reliability, security and performance and resilient architecture to address customers/client business challenges and accelerate technology adoption to improve the product services. AWS/Azure cloud security architecture, design, operations and service orchestration, including application security, architectural concepts, compliance requirements, data security, design requirements, infrastructuresecurity, legal requirements, process and platform.

• Technical Skills:

  Proficient in cloud security assessment, across all the deployment and service models IaaS, PaaS, SaaS. Experience with the cloud-native services across major cloud service providers (AWS, GCP, Azure, OCI). Control on security by design principle of applications hosted in public cloud (Azure, AWS, GCP, OCI). Technical understanding on zero-trust architecture and micro segmentation. Hands-on experience with SIEM (Security Information and Event Management) tools to proactively monitor, analyse, and respond to security incidents.

• Communication skills:

  Outstanding communication abilities. Ability to effectively communicate the required recommendations.

About the Business Group

ICICI Banks Information Security Group believes in providing services to its customers in the safest and secured manner, keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is built on the vision of creating a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. With this core responsibly, ICICI administer and promotes on going campaigns to create awareness among customers on security aspects while banking through digital channels.