Position- Senior Manager- InfoSec – Audit, Assurance & compliance. Location – Noida Years of Experience- 6-10 Years Education- Graduate (Computer Science, Information Security, or related field). Detailed JD- • Support and drive activities pertaining to InfoSec – Audit, Assurance & compliance. Support for Internal, external & Client audit. • Responsible for Internal, external & Client audit. Maintain certifications like ISO 27001, PCIDSS, HITRUST, SOC. Ensure timely closure of audit Gaps. Responsible for conducting a proactive assurance assessment for GT and ISG. • Activities pertaining to InfoSec – Audit Assurance & Governance function (including but not limited to): o Regular reviews of Policy, Process reviews basis cyber security best practices & standards o Pro-active regular assessment of cyber technology capabilities (including tools & technologies) o Security assurance on new and existing applications (On prem applications and Cloud – SaaS, PaaS etc.) o Prepare and publish regular dashboards, management assurance reports, KPIs, automations and simplification of processes o Improve efficiency of GRC implementations o Incident Response & Forensic Investigation Readiness o Managing internal and external reporting as well as various functional dashboards o Stakeholder management to ensure timely availability of required inputs o Tracking and reporting of sub functional planned activities to higher management • Project Management of InfoSec initiatives • Management of information security risks Technical Skills: • Good understanding of Information Security and Compliance, Risk Frameworks • Knowledge of current best practice management tools and techniques • Strong stakeholder management skills • Basic knowledge of Networking, Systems, Voice and business applications • An industry recognized certification like LA27001, CEH, CISSP, PCIDSS, CISA / CISM is an added advantage Process Specific Skills: • Strong domain understanding of IT outsourced business model • Capable of managing project tasks individually and as a team • Ability to document and explain technical details in a concise & understandable manner • Ability to interface and communicate at all levels within EXL and Client organizations • Understanding of Enterprise Business Processes, IT Process, Compliance frameworks is vital • Knowledge of auditing standards Soft skills: • Good presentation and interpersonal skills. • Excellent problem-solving skills in a cross functional environment • Strong verbal and written communication skills • Strong customer service orientation ability to connect with global customers and work with Global teams • Good listening and consultative skills • Stakeholder Management, collaboration, Team work, Project Management, Risk Management, Compliance assurance
Apply through whichever channel suits you best.