8 Security Policy Jobs

Develop, implement, maintain security to protect an organization's (& customers) digital assets & data Security Design & Implementation Create & implement security policy, protocol & measure Monitor systems for threats & perform forensic analysis Required Candidate profile Security supports the organization's long-term goals Plan capacity, disaster recovery & business continuity Documentation Troubleshoot Network Training Expertise in cloud infra solution KVM, OpenStack

Role & responsibilities * Ex- Army not less than a captain * Worked into corporate and plant level * Must have implemented security policy and procedure * Well versed with new trends in security (Digital and Physical) * Subject matter expert for areas related to procedure, service standards and operations policies. * Implementing the security procedure across the organization Developing security framework and policies * Conducting risk assessment and mitigation * Managing of security deployment at all locations * Assessment regarding requirement of gadgets related to access control, surveillance, CCTV, Intrusion detection, etc * Performing risk assessment related to vulnerability, * Design and conducting security training and awareness program * Formulating the emergency preparedness and response plan Preferred candidate profile

Job Description Key Responsibilities 1. Performs risk assessments, internal audits, and tests to ensure proper functioning of data processing activities and security measures and ensure all observations are closed on time with proper evidence. 2. Performs application, server, DB users access rights review on monthly/quarterly basis and reports to get appropriately approved by management. 3. To ensure all platform like network, server, application, database audit logs are stored for one year. Also, to ensure the logs review done on daily and monthly basis for the critical devices and applications. 4. To ensure all external ASV/VA scan, internal VA scan, internal, external, application penetration tests, Segmentation PT are performed on scheduled time and also to ensure all critical, high and medium vulnerabilities tracked and closed within defined SLA 5. Performs policy procedures review on regular basis and to ensure process is followed as per the policy/procedure defined. 6. To ensure that the application change requests, incidents, problems tickets are tracked and reviewed on monthly basis and ensure all observations closed on time. 7. Perform review of assets like Applications, Software, Platforms, Mobile Applications, Database, Storage unit, Network and communication service, End User Devices and to ensure are documented by respective stake holder and reviewed. 8. To ensure Business continuity/DR Drill/Call tress/restoration tests are initiated and conducted as per client and internal requirement. 9. Perform Information security user awareness, BCP awareness training for all the users on regular basis. 10. To ensure that AV signatures are updated on daily basis and also to ensure that application-level patches, server level patches, Database patches and other mobile devices are patched on regular basis and deployment is tracked as per ISMS/PCI/Client compliance requirement. 11. Perform firewall rule set reviews on monthly / quarterly basis and to ensure all access rule justification are documented and insecure ports and services are closed. Desired Skills 1. CISM, CISA, LA- ISO 9001 & 27001, CEH, Exposure to Implementation of PCI-DSS, PCI PIN & PCI P2PE controls. 2. Demonstrated problem-solving and analytical skills. 3. Proficient, or able to gain proficiency with, a broad array of security software applications and tools. 4. Thorough understanding of computer-related security systems including firewalls, encryption, and password protection and authentication 5. Proficient in security testing tools, Microsoft Office Suite, Microsoft Excel, or related software. 6. Excellent verbal and written communication skills. Technical/Functional Proficiency Required 1. Assess risks to determine improvements for security policies and protocols. 2. Problem-solving skills. Experience Level (If applicable) 3-8 years of experience in computer systems with some specialization in computer and software security highly preferred.

WDear Job Seeker!! Job Title : Security Manager Department : Facilities About The Organization Wonderla Holidays Ltd (Wonderla), founded in 2002, is one of the largest amusement park operators in India. It currently operates three amusement parks situated in Kochi, Bengaluru, Hyderabad and Bhubaneswar under the brand name Wonderla and a resort in Bengaluru under the name Wonderla Resorts. The company commissioned its first amusement park in Kochi in 2000 (earlier known as Veegaland), the second amusement park in Bengaluru in 2005 and the third one in Hyderabad in 2016. Wonderla is opening parks in Bhuvaneswar in 2024 and Chennai which is currently under construction. Qualification: Any Graduate Experience: 5 to 8 Years Skills Excellent communication and interpersonal skills Outstanding organizational and leadership skills Computer Skills (knowledge in MS Office) Duties & Responsibilities Develop and implement security policies, protocols and procedures. Control budgets for security operations and monitor expenses. Recruit, train, and supervise security supervisors and guards. Attend meetings with other managers to determine operational needs. Plan and coordinate security operations for specific events. Coordinate staff when responding to emergencies and alarms. Review reports on incidents and breaches. Investigate and resolve issues. Create reports for management on security status. Security Agency Management Knowledge in relevant technology and equipment (e.g. CCTV, Metal detectors, Fire Extinguishers) Experience in reporting and emergency response planning. Work Location: Wonderla Holidays Limited, No.45/1F, OMR Road, Illalur Village, Thiruporur, Tamil Nadu 603110. Interested candidate can share resume at priyanka@wonderla.com

As a Principal Security Architect at Kshema General Insurance, you will be a vital part of our security organization, reporting directly to the Chief Technology Officer. Your primary responsibility will be to shape and implement the cloud security strategy for Kshema across a wide range of evolving technologies. Your role will involve collaborating closely with development teams, product teams, and various departments within the organization to seamlessly integrate security into the entire application delivery lifecycle from initial design to deployment. You will be instrumental in defining security requirements, conducting application security assessments, and providing developers with guidance on security remediation. Your key duties and responsibilities will include working independently with different teams to ensure secure design, development, and implementation of applications and networks. You will actively participate in engineering projects to identify and address threats and vulnerabilities within our cloud infrastructure. Additionally, you will play a crucial role in defining cybersecurity requirements, conducting security design reviews, and providing recommendations for remediation to system administrators. To excel in this role, you must demonstrate deep expertise in cloud platforms such as Azure, AWS, or Google Cloud Platform (GCP) and possess a strong understanding of native security services. Your responsibilities will also include designing secure cloud architectures, implementing encryption and key management practices, and integrating security into CI/CD pipelines and infrastructure as code. Furthermore, you will be required to conduct threat modeling, risk assessments, and security reviews for cloud workloads, as well as develop and drive the cloud security strategy aligned with business objectives. Your role will involve creating architecture diagrams, security design documents, and collaborating with the Chief Information Security Officer (CISO) on evaluating technology initiatives and projects. Minimum Requirements: - Bachelor's degree in computer science or related field - 10+ years of cybersecurity experience, with at least 4 years focused on cloud security architecture - Proven experience in Azure and/or AWS - Strong knowledge of DevSecOps practices, container security, and serverless architectures - Familiarity with compliance frameworks such as NIST, ISO 27001, SOC 2, HIPAA, and PCI-DSS - Relevant certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer Associate, CISSP) - Hands-on experience with threat modeling and knowledge of common security vulnerabilities and attack vectors Preferred Experience: - Experience in regulated industries - Strong communication and leadership skills - Experience leading security architecture programs at the enterprise level - Experience with container security platforms and Infrastructure as Code As a Principal Security Architect at Kshema General Insurance, you will have the opportunity to make a significant impact on our cloud security strategy and drive the implementation of cutting-edge security solutions across the organization.,

At Bravura Solutions, collaboration, diversity, and excellence are highly valued. We provide a space for you to be curious, innovative, and contribute to our culture in an exciting and fast-paced environment. As a global FinTech market leader and ASX listed company, Bravura partners with over 350 top financial services clients, offering wealth management technology and products. We are dedicated to developing cutting-edge, digital-first solutions that help our clients achieve financial security and prosperity for their customers. Join us in our mission to drive innovation and make a positive impact in the financial services industry. We are currently seeking a Senior Information Security Officer to join our Information Security team. In this role, you will be responsible for implementing and operating the organization's Information Security Management System (ISMS) within your region. Your main tasks will include driving security risk management, ensuring policy compliance, conducting audits, providing training and awareness, managing supply chain risk, and supporting security operations in incident management. Key Responsibilities: - Oversee the implementation and operations of the ISMS within the region. - Ensure alignment with global security policies and regulatory requirements. - Identify, assess, and mitigate security risks. - Maintain the risk register and track remediation activities. - Develop and enforce security standards and client requirements. - Lead internal and external security audits and ensure timely remediation of findings. - Provide security assurance to clients and coordinate with service delivery teams. - Develop and deliver security awareness programs and support training initiatives. - Assess and manage security risks associated with third-party vendors and suppliers. - Assist in managing and responding to security incidents within the region. Qualifications: - Bachelor's degree in Information Security, Computer Science, or related field. - 5+ years of experience in an information security role, preferably in an MSP or data processing environment. - Strong understanding of ISO27001, NIST, GDPR, and other security frameworks. - Experience in security risk management, audits, compliance, and client security assurance. - Knowledge of security operations, incident response, and managed security services. - Excellent communication and stakeholder management skills. - Security certifications such as CISSP, CISM, or CRISC are preferred. At Bravura, we offer a competitive salary, employee benefits scheme, parental leave policy, free meals, and transport facilities. If you are passionate about information security and want to work in a dynamic and innovative environment, we would love to hear from you. Apply now and be part of our team dedicated to shaping the future of financial technology.,

As a Senior Cyber Security Engineer, you will be responsible for designing and implementing security measures to protect information systems and data in a dynamic and energetic working environment. You will have the opportunity for career growth and learning while ensuring the security infrastructure is robust and effective. Your primary roles and responsibilities will include designing security architectures for complex systems, deploying security technologies such as firewalls and antivirus software, managing network security measures, conducting vulnerability assessments, and implementing access controls. Additionally, you will develop security policies, standards, and procedures to ensure compliance with relevant laws and regulations. You will play a crucial role in incident response activities, including investigation, resolution, and digital forensics, as well as providing security awareness training to promote a security-conscious culture. Your expertise in managing cybersecurity within IT applications, cloud, network, and IT infrastructure will be essential in identifying and resolving security issues. To excel in this role, you should have more than 5 years of experience in cybersecurity, a strong understanding of network and systems security principles, and proficiency in configuring security technologies. Knowledge of encryption protocols, vulnerability assessment tools, and incident response skills are also required. Excellent problem-solving, analytical, communication, and collaboration skills are essential for this position. Certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), and CompTIA Security+ are preferred qualifications. The shift timings for this position are from 8:30 AM to 5:30 PM, Monday to Friday, with health insurance and provident fund benefits available. If you thrive in high-pressure situations, have a passion for cybersecurity, and enjoy finding cost-effective solutions to cyber threats, this role offers you the opportunity to make a significant impact in the field. Your contributions will be instrumental in maintaining a secure IT environment and protecting sensitive data from potential risks and vulnerabilities.,

Job Profile: An IT support engineer with 3 years work experience in Windows AD, Office 365, AWS cloud, Anti virus, Helpdesk management, Citirx, LAN, WAN connectivity, Windows operating system. Desktop/laptop break fix support Linux knowledge and experience in CRO or Pharma domain will be an added advantage Primary Skills : Active Directory Management, Citrix XenDesktop, Email Management, Active Directory Users and Computers, Citrix Virtual Apps, Windows operating systems, Operating System, Citrix Endpoint Management Other Technical /Specific requirements: Diploma/BE, MCSE certification, ISO27001 certification, Lead Auditor certification Job Location: Ahmedabad