Senior Infosec Administration ( Job ID : 000000253 )

• 
  NA

• Implementation, operation and maintenance of the Information Security Management System based on the ISO/IEC 27000 series standards, including certification against ISO/IEC 27001 where applicable
• Internal Audit management
• Reporting Infosec performance to Senior Management
• Preparation and implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the InfoSec organization
• Design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations
• Improve information security awareness and training
• Respond to RFP queries on Information security - SIG templates etc.
• Manage SSAE 16 attestation requirements and coordinate among functions for fulfilling control requirement
• Conduct internal vulnerability assessment for servers & network devices
• Update process/ procedure, policy documents based on feedback
• Coordinate Information security risk assessments for various functions
• Coordinate and Conduct Business continuity management and IT disaster recovery drills

• At least 4-5 years of experience in information security management and/or related functions (such as ISMS audit and Risk Management)
• Hands on experience in implementing and managing ISO/IEC 27001:2013
• Information Security activity management including incident management, Audit Management & BCM