Senior Manager - Risk and Compliance

Indian Financial Technology And Alliedservices

10 - 15 years

25 - 37 Lacs

mumbai hyderabad

Posted:23 hours ago| Platform:

Apply

Skills Required

it risk management it security risk compliance risk assessment cloud security iso cyber security compliance management information security policies control auditing networking monitoring internal audit cism security operations drafting compliance infosec cisa risk pci dss

Work Mode

Work from Office

Job Type

Full Time

Job Description

Summary:

Candidate will lead the IT Risk Management, IT Compliance and IT Internal Audit in IFTAS. Cloud Security experience is desirable.

Experience:

Candidate must have 10+ years of total experience with 7-9 years’ of relevant experience. Experience/exposure to infosec/cybersecurity compliance requirements of Indian Banking industry is mandatory

Knowledge:

ISO 27001 and PCI DSS Standards & Controls
Drafting / implementing Information Security Policy
IT Risk Management and IT Compliance
IT, Cyber Security best practices, processes, and tools
Cloud Security best practices

Roles and Responsibilities

Lead the ISO 27001 Implementation and ensure its compliance.
Based on ISMS monitoring results, evaluate & recommend for Information Security Policy change.
Standardization IT and Cyber Security practices as per ISO 27001 and another global standard.
Establish acceptable limits for the application, network, or system usage in IFTAS.
Ensure security review of the new requirement / projects are performed to ensure required security controls are incorporated.
Team is responsible to conduct security review of IT Application / Infrastructure and provide the recommendations for improvement, the review includes hardening, access controls, privilege access, obsolete configuration, etc.
Team is responsible to conduct risk assessment of Asset / Service and provide recommendation with remediation steps.
Review MSA/SoW/NDA, Contractual requirements of customers and vendors and advise on information security compliance.
Facilitate Internal and external audit and track the findings for timely closure.
Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
Monitor and evaluate the effectiveness of IFTAS Information Security controls / safeguards to ensure that they provide the intended level of protection.
Create Policies, Processes, and Standards.
Develop methods to monitor and measure risk and compliance.
Develop methods for Internal and third-party audit (e.g., cloud service providers, data centers).
Ensure information security requirements are incorporated in new IT Procurement / Outsourcing.
Ensure that Production and Non-Production (UAT, Testing) environments follow Information Security Policy.
Ensure that Information / Data Protection controls are implemented as per Information Security Policy.
Identify, assess, and recommend cybersecurity controls or cybersecurity-enabled products for IFTAS.
Adhere and promote the information security policy awareness and best practices in the company.

More Jobs at Indian Financial Technology And Alliedservices

IT Engineer - L1 Support Engineer For Helpdesk and DC Operations

Mumbai, Hyderabad

2 - 5 yrs

INR 5 - 7 Lacs

Team Lead - QA/QC

Hyderabad

6 - 8 yrs

INR 12 - 16 Lacs

Senior IT Engineer - QA/QC

Hyderabad

3 - 6 yrs

INR 7 - 10 Lacs

Manager (Cyber Security)

Mumbai

8.0 - 12.0 yrs

INR 20 - 25 Lacs

Lead Network Security Engineer

Mumbai, Hyderabad

6.0 - 10.0 yrs

INR 13 - 18 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start IT Security Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.