Sr.Manager/Manager – Risk & Compliance (Cybersecurity)

Jubilant Bhartia Group

Jubilant Bhartia Group is a global conglomerate founded by Mr. Shyam S Bhartia and Mr. Hari S Bhartia with strong presence in diverse sectors like Pharmaceuticals, Contract Research and Development Services, Proprietary Novel Drugs, Life Science Ingredients, Agri Products, Performance Polymers, Food Service (QSR), Food, Auto, Consulting in Aerospace and Oilfield Services. Jubilant Bhartia Group has four flagships Companies- Jubilant Pharmova Limited, Jubilant Ingrevia Limited, Jubilant FoodWorks Limited and Jubilant Industries Limited. Currently the group has a global workforce of around 43,000 employees.

About Jubilant Ingrevia Limited

Jubilant Ingrevia is a Global Integrated Life Science Products & Innovative Solutions provider serving, Pharmaceutical, Agrochemical, Nutrition, Consumer and Industrial customers with our customised products & solutions that are innovative, cost effective and conforming to premium quality standards.

Ingrevia

is born out of a union of

“Ingre”

denoting Ingredients &

“vie”

in French meaning Life (i.e. Ingredients for Life)Jubilant Ingrevia history goes back to 1978 with the incorporation of VAM Organics Limited, which later became Jubilant Organosys and then Jubilant Life Sciences and now demerged to an independent entity as Jubilant Ingrevia Limited, which is listed in both the stock exchanges of India. Over the years, company has developed global capacities and leadership in chosen business segments.We have more than 40 years of experience in Life Science Chemicals, 30+ years of experience in Pyridine Chemistry and value added Specialty Chemicals, and 20+ years of experience in Vitamin B3, B4 and other Nutraceutical products.We have strategically segmented our business into three Business Segments as explained below. We are rapidly growing the revenue in all the three segments.

Speciality Chemicals Segment

: We propose to launch a new platform of Diketene & its value-added derivatives, forward integrate our crop protection chemicals to value-added agrochemicals (Herbicides, Fungicides & Insecticides) by adding new facilities. We are an established ‘partner of choice’ in CDMO, with more Invest plans in GMP & Non-GMP multi-product facility for Pharma & Crop Protection customers.

Nutrition & Health Solutions Segment

: We propose to expand the existing capacity of Vitamin B3 to continue being one of the market leaders and introduce new branded animal as well as human nutrition and health premixes.

Chemical Intermediates Segment

: We propose to expand our existing acetic anhydride capacity and add value added anhydrides and aldehydes and enhance volumes in speciality ethanol.We have 5 world-class manufacturing facilities i.e. One in UP at Gajraula, Two in Gujarat at Bharuch and Baroda, Two in Maharashtra at Nira and Ambernath . We operate 61 Plants across these 5 sites giving is multi-plant and multi-location advantage.Find out more about us at www.jubilantingrevia.com

The Position

Organization-

Jubilant Ingrevia Limited

Designation -

Sr. Manager/Manager – Risk & Compliance(Cybersecurity)

Location-

Noida.

Job Summary:

-

Risk and Compliance resource will be responsible for strengthening Jubilant’s Cybersecurity Risk and Compliance Management framework. This role involves assessing the effectiveness of existing security solutions, identifying gaps, and implementing appropriate controls and technologies to ensure compliance with regulatory and internal security standards.

• Define, operate and monitor an information security management system. Impact and frequency of information security incidents do not exceed enterprise risk appetite.
• Establish and maintain an information security management system (ISMS) that provides a standard, formal and continuous approach to information security management, enabling secure technology and business processes that are aligned with business requirements.
• Maintain an information security plan that describes how information security risk is to be managed and aligned with enterprise strategy and enterprise architecture.
• Ensure that recommendations for implementing security improvements are based on approved business cases, implemented as an integral part of services and solutions development, and operated as an integral part of business operation.
• Maintain and regularly communicate the need for, and benefits of, continuous improvement in information security.
• Collect and analyse data about the information security management system (ISMS), and improve its effectiveness. Correct nonconformities to prevent recurrence.
• Develop a substantiated view on actual IT risk, in support of risk decisions
• Maintain an inventory of known risk and risk attributes, including expected frequency, potential impact and responses. Document related resources, capabilities and current control activities related to risk items.
• Communicate information on the current state of IT-related exposures and opportunities in a timely manner to all required stakeholders for appropriate response.
• Manage opportunities to reduce risk to an acceptable level as a portfolio
• Respond in a timely manner to materialized risk events with effective measures to limit the magnitude of loss.
• Risk identified during Vulnerability assessment and Pen testing to be captured and taken through the mitigation response. Perform Third Party Risk Assessments.
• Review the operation of security controls, including monitoring and test evidence, to ensure that controls within business processes operate effectively.
• Include activities to maintain evidence of the effective operation of security controls through mechanisms such as periodic testing, continuous monitoring, independent assessments, command and control centres, and network operation centres.
• On a continuous basis, monitor changes in local and international laws, regulations and other external requirements and identify mandates for compliance from an IT perspective.
• Review and adjust policies, principles, standards, procedures and methodologies to ensure that legal, regulatory and contractual requirements are addressed and communicated. Consider adopting and adapting industry standards, codes of good practice, and good practice guidance.
• Confirm compliance of policies, principles, standards, procedures and methodologies with legal, regulatory and contractual requirements.
• Liaison with Information Security office to ensure privacy by design is incorporated in all the relevant applications e.g. HRIS, ERP,Infor LN.
• Ensure data protection compliance within organization.
• Cooperate with theauthorities ininvestigations, complaint handling, and inspections.
• Conduct periodic audit, reviews, and draw organization’s attention to any failure to comply with theapplicable privacy law.
  

Person Profile

.

Qualification

-

Bachelor’s Degree in Computer Science/ Information Technology

Experience

-

12-14 Yrs.

Desired Skills

Desired Skills & Must Have

-

• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
• Excellent PowerPoint, Word, Excel Skills
• Excellent verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
• ISO 27001 / ISO 22301/ NIST / COBIT
• Vulnerability Management Risk Assessment
• Security Assessments
• System and Process Audits
  

Jubilant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, colour, gender identity or expression, genetic information, marital status, medical condition, national origin, political affiliation, race, ethnicity, religion or any other characteristic protected by applicable local laws, regulations and ordinances.