MRO is transforming the way clinical data is exchanged...
Location: Nanded City, Pune
Report to: Manager Compliance
Purpose of Position: Handle daily Infosec operations, answering questionnaires, attending client calls, compliance measurements.
Research security enhancements and make recommendations to management
Stay up-to-date on information technology trends and security standards
Investigate security breaches and other cyber security incidents
Document security breaches and assess the damage they cause
Stay current on IT security trends and news
Answer security questionnaires
Handling client calls for info sec
Development, documentation, and maintenance of information security policies, procedures, and standards
Initiates, facilitates, and promotes activities to create information security awareness throughout organization
Monitors and routinely audits compliance to all information security procedures and policies, and ensures consistency of internal controls and software compliance
Observes changes in regulations and accreditation standards affecting information security, and makes recommendations on the need for policy changes
Coordinates response to legal requests for data protection, legal hold, access, etc.
Coordinates the response to, investigates, escalates, mitigates, and reports actual and attempted cyber security incidents and communicates in alignment with a cyber-incident communication plan
Vendor Management - Evaluate new tools, prepare BOM, negotiate
Deep understanding of infrastructure (data center, network & end user computing) security / cloud security / managed security services / security operations center / compliance & risk management
Knowledge on any of the following security standards
Experience on answering security questionnaire
A high sense of urgency and deep interest in serving the customer
Hands on functional understanding of various technologies in security
Proven track record in Pre-Sales, IT Outsourcing
Self-motivated individual with excellent interpersonal skills, flexibility and team work capabilities
Proven track record in RFI and RFP response (Pre-Sales, Solution design & development, Proposal response and presentation) in the area of Cyber Security Solutions by strongly collaborating with larger infrastructure, applications, Cloud and Digital functions
Knowledge and experience managing IT security programs including governance, policies, risk management, architecture, and awareness
In depth knowledge of operating systems, network elements and protocols, encryption tools, client-server and web architectures, firewalls, and intrusion detection/prevention systems, patch management, antivirus etc.
Familiarity with application security, databases technologies, identity, and access management
Knowledge in network protocols such TCP/IP, UDP, HTTP, TLS, SMB, SSH, RDP and any other prominent internal protocols
Ability to present to a variety of audience from technical to managerial
Ability to align the Cyber insider threats to the impact on the customer business of the customer etc.
Language requirement: fluent in English, excellent communication and personality
Understanding of cloud security solution and Security architecture and design experience
Experience within the domain of information systems and security/data protection
Excellent oral and written communication skills
BE / B. Tech Preferred
Degree or PG in Computer Science or IT
Full Time Technical Diploma
Work Experience: 7-8 years of experience
Certification: CEH, ISO 27001-2013 LA, Any certification in IT security / Information security
Desired: CISSP / CISM
The Job Description is subject to change from time to time, as per the requirements of the Company and the competencies / qualifications you may acquire in future.