Senior Manager - Mumbai, India - Zodiac HR

    Zodiac HR
    Zodiac HR Mumbai, India

    2 weeks ago

    Default job background
    permanent Technology / Internet
    Description

    Job Description :

    Should have done security implementation on the following controls like firewall, IPS, VPN, NEXT GEN, Eirewall Technology,

    - Mail & web gateways, reverse Proxies ,AD, AV, Patch Management ,Digital Certificates ( class - II,CLASS III and EV SSL Etc ) NAC - Network access control, APT - Advanced persistent threat

    Monitoring the SOC Project / vendor, server hardening, DLP, Encryption tools, DRM/data classification, PIM Etc. and also as per RBI Framework and Guidelines on the cyber security implementation.

    - Should have working knowledge of SOC or any of the SIEM Technology like SOAR,NBAD,PCAP,UEBA,TIP/TL, Review of CONTROLS ( IS Audit VA, PT, APPSEC,IR Governance Initatives Under COBIT Etc ) Audit planning ,Implementing ISO

    Well Versed with Information Security controls of Endpoint, Network and Application :

    Strategic Leadership: Provide strategic leadership for the company's information security program. Develop and implement a comprehensive information security strategy aligned with business goals.

    Policy Development: Establish and enforce information security policies and procedures to ensure the confidentiality, integrity, and availability of information assets. Regularly review and update security policies to address emerging threats and compliance requirements.

    Risk Management: Identify, assess, and manage information security risks. Implement risk mitigation strategies and ensure effective risk monitoring and reporting.

    Compliance: Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001, HIPAA). Lead efforts to obtain and maintain necessary certifications.

    Security Awareness: Develop and implement security awareness programs for employees. Conduct training sessions to educate staff on security best practices and the importance of cybersecurity.

    Incident Response: Establish and oversee an incident response plan. Lead investigations into security incidents, coordinate response activities, and ensure post-incident analysis.

    Vendor Security: Evaluate and manage the security posture of third-party vendors. Collaborate with procurement and legal teams to include security requirements in vendor contracts.

    Security Architecture: Collaborate with IT teams to design and implement secure architecture for systems and applications. Conduct regular security architecture reviews and provide recommendations for improvements.

    Security Audits: Plan and execute regular security audits to assess the effectiveness of security controls. Coordinate external audits and penetration testing as needed.

    )