NeoSoft Technologies - Information Security Engineer - Cyber Security/ISMS

Designation : Information Security

Experience : 8 to 12 years

Budget : Upto 18 LPA

Notice Period : Max 30 Days

Job Location : Dadar, Mumbai (Work from Office)

Mandatory Requirement :

- Have 5 - 7years of work experience in Information Security.

- Experience on implementing, managing and driving all Information Security Management System ISO27001/SSAE16/GDPR

- Experience in Information Security Audit

- Certifications- ISO 27001

- Adequate knowledge of Server, network, application and perimeter security, endpoint security.

- Excellent verbal and written English communication skills and Excellent documentation are most important for the role.

Job Description :

- Perform GAP assessment and Implement new information security standard and compliance across the organization as per the company's strategy e.g. ISO 27001:2013

- Governance of the implemented information security related standard and compliance across the organization such as ISO 27001:2013

- Design, review and update information security policies and procedures for ISO 27001:2013 compliance, then annually or whenever any major changes occur/ gap is identified / mitigate the risk and seek approval from the appropriate authority

- Perform information security risk assessment and risk management for ISO 27001:2013 compliance, then annually or whenever any major changes occur

- Evaluate the implemented controls to identify any gap and improve the effectiveness score

- Conduct third party vendor risk assessment and apprise stakeholder of the risk / findings to take the decision

- Conduct ISMS review meetings with the management regularly and share the health of the ISMS (information security management system)

- Perform internal audit, coordinate with the internal teams, identify any deviation and ensure timely remediation to successfully pass the external audit

- Participate in the external audit, coordinate with the auditor and internal team for timely collection of the evidence and clear the audit with minimal observations

- Handle internal and external information security incident, coordinate with the respective stakeholder, identify the root cause, implement corrective/preventive action, communicate to the respective stakeholder and affected party

- Design and implement BCP (Business continuity plan) policy and perform BCP test annually

- Initiate information security awareness program e.g. assign training module, game, videos to educate the users on periodic basis. Deliver security information during orientation

- Prioritize and complete tasks within deadlines independently and minimal supervision

- Proactively escalate issues and concerns when necessary

Desired Skills :

- Strong computer skills (Microsoft word, excel, powerpoint and outlook etc.)

- Strong analytical and decision-making skills

- Conflict management and resolution skills

- We need immediate joiners or 30 days notice period.

- Employment Type - Full-time

Mumbai, MH, IN
Apply Now