Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Oil & Gas Jobs |
Banking Jobs |
Construction Jobs |
Top Management Jobs |
IT - Software Jobs |
Medical Healthcare Jobs |
Purchase / Logistics Jobs |
Sales |
Ajax Jobs |
Designing Jobs |
ASP .NET Jobs |
Java Jobs |
MySQL Jobs |
Sap hr Jobs |
Software Testing Jobs |
Html Jobs |
Job Location | Mumbai |
Education | Any Graduate |
Salary | 15,00,000 - 25,00,000 P.A. |
Industry | IT-Software, Software Services |
Functional Area | IT Software - Application Programming , Maintenance |
EmploymentType | Full-time |
Job Title Senior GRC Consultant Job Function Managing GRC Projects Experience : 7-12 Years Job Location Mumbai (Should be willing to travel within and outside India) Any one relevant professional certifications like CISSP, CISA, CISM, ITIL, ISO 27001 Lead Auditor, ISO 27001 Lead Implementer etc. mandatory Job Description Conducting Information Security Governance, Risk & Compliance (GRC) Consulting projects for customers across the globe using various standards like PCI-DSS, ISO 27001, NIST CSF, COBIT, etc.) Defining the risk management methodology supported by a threat-vulnerability assessment in collaboration with key stakeholders within the organization. Defining, documenting, Implementing and refining information security management frameworks within client organizations. The documentation may include Information security strategy, IS policies, procedures, standards, guidelines, SOPs, forms, templates, etc. Conducting comprehensive risk assessments in close coordination with internal and external stakeholders. Assisting in implementation/maintenance of information security policies and procedures in compliance to Governance, legal, contractual or internal requirements. Liaison with and provide expert guidance to customer Information Security and other Departments. Conduct Security Risk assessments to enable stakeholders to make risk decisions in an informed and considerate manner keeping business objectives as paramount. Review the security aspects of business cases, IT application / infrastructure changes, IT & IS project proposals, requirements, solution designs & system architectures. Create and promote security awareness campaigns. Conducting Information Security awareness programs with objective of increasing the information security awareness of staff and management on latest information security threats and vulnerabilities through innovative ideas and initiatives. Managing the assigned team, project management & delivery management Training the internal team on GRC & Risk Assessment. Meeting prospective customers on presales meetings and/or specialized GRC and risk management consulting services. Monitor and review Information Security compliance. Coordinate with customer IT project management department, vendors and consultants to build an effective security program. Lead Information Security Annual Planning, Information Security Architecture and IS Governance reviews for customer organization. Required Skills & Expertise 7+ years of experience in Information Security Management and Governance. A Bachelor or a Master s degree in IT, ECE or Computer Sciences. Experience in systems, database, network and application security Knowledge of risk assessment approaches, policy formation, authentication technologies Understanding of advanced security protocols and standards Experience with software and security architectures Security qualifications such as CISSP, CISA, CISM, ISO27001 auditor will be a plus Detailed working knowledge on implementation of information Security and/or IT security standards: ISO/IEC 27001/2, PCI-DSS, Data Protection Act (GDPR, etc). Should have conducted ISO 27001 gap assessments, PCI-DSS gap assessments & other gap assessments against information security regulatory/statutory/compliance requirements Should have exposure to conducting banking Information Security audits Ability to be analytical and strategic. Able to work with minimal supervision. Presentation & Internal Customer Facing skills. Ability to communicate complex ideas concisely and in a business context. Project Management skills and experience Exceptional interpersonal and influencing skills Ability to collaborate with a broad range of business and technology stakeholders including top management representatives Positive attitude, problem solving skills and attention to details Should be results-oriented and able to deliver within preset deadlines. Should value quality and client-satisfaction Should possess very good communication skills (written/spoken English & presentation skill) Should have strong experience in conducting risk management and must have knowledge of various risk assessment methodologies Should have the capability to provide on-demand solutions pertaining to Governance & Risk Management Desired Skills Any one Relevant professional certifications like CISSP, CISA,CISM, ITIL, ISO 27001 Lead Auditor, ISO 27001 Lead Implementer etc. mandatory Desirable to have working knowledge of Vulnerability Assessment, Network Penetration
Keyskills :
Information Security Management ISO 27001 Cissp Cism Cisa IT Project Management
Elevation Human Private Limited Executive search firm
Please refer to the Job description above