Job Description

Responsibilities :\xef\x83\x98 Implement the control framework by working with all relevant stakeholders
\xef\x83\x98 Manage information security risk assessment
\xef\x83\x98 Drive process improvements in the area of information security
\xef\x83\x98 Provide SME support in handling client reported incidents and ensure closure of the raised incidents
\xef\x83\x98 Communicate information security incidents to client within stipulated time frame and track closure of all reported incidents
\xef\x83\x98 Get approvals for BAU activities such as Vulnerability scans, installation\\extensions, Change Requests, admin rights, additional software requirements, floor visits, and all security exceptions
\xef\x83\x98 Drive periodic meetings with client security team by collating required details for defined parameters
\xef\x83\x98 Manage ISG driven internal SPOT checks
\xef\x83\x98 Facilitate Implementation of all the contractual requirements within the engagement
\xef\x83\x98 Support client for conducting audits at different locations
\xef\x83\x98 Facilitate closure of audit findings received during client conducted spot checks
\xef\x83\x98 Report to ISG and delivery management about any Cyber security issues and keep them periodically informed about engagement\'s compliance posture
\xef\x83\x98 Handle various standard, regulatory and compliance requirements such as ISO27001, SSAE16 SOC 1, SOC 2, PCI DSS, HIPAA etc.Technical and Professional Requirements :\xef\x83\x98 The candidate shall have at least 4-6 years\' experience in Information Security Governance, risk and compliance management with strong information and network security concepts. The candidate shall have good experience in the areas of Risk Management, Governance, Compliance, Security policy and Metrics.
\xef\x83\x98 The candidate should possess good technical, analytical, troubleshooting and problem solving skills. The candidate is expected to work as an individual contributor with minimum support from manager and shall have excellent communication and collaboration skills.
\xef\x83\x98 The candidate shall possess good understanding of ISO 27001:2013, SSAE 16 SOC 1 & SOC 2, PCI DSS, HIPAA & other industry recommended standards and regulations.Preferred Skills :Domain->Infrastructure-Information Security Management->Information Security ComplianceEducational Requirements :Bachelor of EngineeringService Line :Information Security Group

Infosys