12/07 Pavithra
Recruiter at Smd

Views:775 Applications:110 Rec. Actions:Recruiter Actions:65

Information Security Manager - ISO/ISMS (10-15 yrs)

Mumbai Job Code: 466982

Job Responsibilities :

- Develop, maintain and implement improvements to a landscape of technical security safeguards, including assessment and deployment of new capabilities, technologies, and systems

- Apply expert level knowledge in developing security architecture, frameworks, design patterns, standards, reference
architectures and best practices

- Conduct research focused on identifying emerging technology solutions that reduce costs, increase efficiencies,
provide more value, provide more capabilities, reduce risks, and increase security posture

- Lead security architecture team efforts for technology evaluations, which involves identifying a weighted feature
matrix for a specific need and evaluating and scoring products against the desired features; lead research activities
including industry materials review, proof-of-concepts (POCs), and lab testing

- Proactively identify web app sec controls and risks, commenting and/or providing alternatives for improvement

- Oversee and consult with teams to ensure adherence to security best practices

- Identify and understand issues, problems, and opportunities as applied to web app sec;

- Translate internal and external security requirements into design of specific information security safeguards

- In collaboration with internal (IT, legal, audit, business and other) and external stakeholders, develop roadmaps and
deployment plans for technical solutions and related procedures in line with global information security program

- Manage activities of the security architecture team and where necessary third-party specialists to support design,
development and implementation of information security safeguards

- Risk assessment and mitigation from security and compliance perspective

- Secure SDLC life cycle implementation

- Rollout ISO 27001 standard across the organization

- Perform ISO 27001 activities like updating/creating information asset register, conduct risk assessments, review ISMS
policies, mandatory documents etc.

- Issue SSL certificate to applications

Women-friendly workplace:

Maternity and Paternity Benefits

Add a note
Something suspicious? Report this job posting.