Security Assurance - Pune, Maharashtra, India - eliterecruitments

eliterecruitments

Verified Company

Pune, Maharashtra, India

2 weeks ago

Posted by:

Deepika Kaur

beBee Recuiter

Description

Security Assurance:

We are looking for a Security Assurance Specialist for one of our esteemed clients.

In this role, you will collaborate closely with IT/IS teams to implement security policies and instructions, ensuring compliance with ISO27001/2 standards.

Your responsibilities will include overseeing operational security controls, coordinating technical security testing, aggregating data for compliance tracking, and providing direction on security policy interpretation.

Location - Bengaluru/Pune

Experience - 6 To 10 Years

Working with the IT/IS teams to implement the requirements identified in Security Policies and Security Instructions by helping to develop and oversee operational
security controls (aligned to ISO27001/2);
**Such as:
- *

Access recertification campaigns;
Coordinate in governance of technical security testing (penetration testing, SAST/DAST, vulnerability scans) of assets with Cyber Defense Application Security team,
Implementation of technical security baselines, increasing Minimum Technical Security Level compliance score. Consolidation of MTSB score and bring in improvement in the process of prefilled tracker
Help aggregating data for MTSB V2 Follow up. (MS Excel, Power BI skills to be

applied)

Gathering and validating artifacts and evidence on the operation of security controls through the Information Security Assurance Framework
Providing direction on the interpretation of security policies and instructions

Working with IT / IS teams to ensure the implementation & monitoring of the security remediation and mitigation actions with the Product Managers and IT Teams identified through
internal governance activities (Security Risk Assessments, Security Assurance Plans, Information Security Assurance Framework, Product Security Forums, Internal Audit reports or Technical
Assurance Testing)

Support the IT /IS Operation in various governance Forums, such as maintain minutes and actions.
Deliver/Maintain up to date Product Security Reports
Ensure that security requirements are taken into account on each step of SDLC or projects, collaborating actively with the Security in Projects team

Skills Required:

Ability to translate security concepts and requirements into language that the business and other nontechnical stakeholders can understand.
Excellent time management skills, including the ability to manage a demanding and variable workload with tight deadlines.
Strong communication and interpersonal skills.
Good analytical skills and the ability to clearly identify key issues.
A strong customer focus to ensure internal stakeholder needs are met.

Knowledge and Experience:

A minimum of 4 years IT/Security experience
Working knowledge of Information Security Management System ISO 27001/
Good understanding of networking and infrastructure technologies and architecture fundamentals
Good understanding of Application Security fundamentals
General understanding of EU Data protection requirements.
General understanding of EU Financial services regulation, and regulatory reporting requirements.
General understanding of Financial Services business processes.