Talent.com
Senior Information Security Compliance Consultant

Senior Information Security Compliance Consultant

Energy ExemplarPune, Republic Of India, IN
14 days ago
Job description

About the Position

Energy Exemplar is looking for a Senior Security Compliance Analyst who will perform duties related to compliance certifications, continuous monitoring of the controls and operational security administration, analysis of security related incidents, vulnerabilities and events that may affect Energy Exemplar and its clients.

Key Responsibilities

  • Provide compliance guidance to cloud security offering business units and product teams
  • Support Internal / External ISO 27001 / 9001, SOC 2, SOC 1 and any new regional assessments requirements (e.G. IRAP) to support business growth.
  • Work effectively as part of a geographically distributed team
  • Develop and maintain security operations processes & documentation (e.G., runbooks, operating procedures, Cyber Incidence response)
  • Maintain event collection environment through health monitoring and logs from Fire Walls, VPN, Email protection, Network Analytics, access control cards system and CCTV.
  • Interact with various security products and platforms, including : O365, MimeCast, WorkspaceOne, Fortinet, Cloud Hosting Providers (Azure, AWS) and others.
  • Provide support for implementation and maintenance of SIEM, DLP, endpoint protection, and other security tool alerts.
  • Provide hands on based input of vendor proposals and emerging security technologies and systems.
  • Coordinate, track and Manage CEII compliance.
  • Provide technical expertise and support to IT management and staff in the implementation of security / protection technologies and network systems / applications.
  • Assist with penetration testing and vulnerability management efforts.
  • Participate in customer audits and respond to infosec questionnaires as part of the RFP process.
  • Participate in incident management activities which include associated investigations, ticket response, communications including periodic tabletop exercises..
  • Assist in Risk Management, Vendor Management, and governance of Information Security policies across the company.
  • Continuously improve our security practices and processes and keep company and customer data safe across our services and infrastructure.
  • Design and build metrics and dashboards to track security incidents, vulnerabilities, risks, and awareness
  • Perform continuous monitoring of the controls including but not limited to :
  • Track and Monitor ISO and SOC 2, SOC 1 and overall common control framework, gather and review evidences.
  • Vulnerability and hardening compliance scan monitoring, reporting and reviews
  • Driving vulnerability remediations within prescribed timeframes
  • Inventory management and reporting
  • Vulnerability deviation request processing, tracking and reviews
  • Plan of Action & Milestones (POA&M) updates and submissions
  • System Security Status reporting
  • Monthly Continuous-Monitoring Metrics reporting
  • Compliance review of Significant change requests

Candidate Requirements & Qualifications

  • At-least 6 years of related experience in Compliance and information security.
  • Well versed in technologies like Windows, Antivirus, Data loss prevention (DLP).
  • Must have experience in Firewalls, Cloud platforms and content filtering solutions.
  • Must have experience in the creating and maintaining security policy documents.
  • Good to have experience with regular vulnerability and web application scanning methodologies.
  • Crisis management (Incident Management) identification and reporting.
  • Network and cloud-based penetration testing experience required
  • Incident response experience and prepare relevant security metrics dashboards
  • 2-4 years’ experience with Firewall, Network, Anti-Virus, DLP, Azure, AWS, and Desktop security administration
  • Proficiency with security tools and platforms (e.G., SIEMs, vulnerability scanners, and malware analyzers)
  • Familiarity with IDS / IPS systems and endpoint Antivirus and EDR products
  • Insider Threat Hunting and Analysis
  • 2 + years of professional experience focused on ITIL standards and practices.
  • Knowledge of current security standards, including ISO 27001, ISO 9001, SOC2, SOC 1, FERC, CEII, GDPR
  • Ability to understand enterprise business computing operations / requirements, and cloud-based cybersecurity services.
  • Working knowledge DevOps concepts (e.G., Infrastructure as Code, Deployment Pipelines)
  • Must have a general hands-on IT background with the capability and enthusiasm of delving into new technologies.
  • Must be willing to work in different time zones.
  • Good communication, presentation, documentation skills.
  • Collaborate closely with Clous Ops, IT and Other function as a first line security point of contact within the GRC team.
    • Create a job alert for this search

    Information Security • Pune, Republic Of India, IN

    Related jobs
    • Promoted
    Information Security Compliance Specialist

    Information Security Compliance Specialist

    Soffit Infrastructure Services (P) LtdCochin, Republic Of India, IN
    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001 : 2022, ISO 27002, and SOC 2 standards for clients. This role involves working i...Show moreLast updated: 30+ days ago
    • Promoted
    Information Security and Compliance Analyst

    Information Security and Compliance Analyst

    DemandbaseRepublic Of India, IN
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you’ll collaborate cross...Show moreLast updated: 22 days ago
    • Promoted
    Lead Information Security Engineer

    Lead Information Security Engineer

    IDfyRepublic Of India, IN
    IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboard...Show moreLast updated: 1 day ago
    • Promoted
    Senior Information Security Engineer

    Senior Information Security Engineer

    IDfyRepublic Of India, IN
    IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboard...Show moreLast updated: 1 day ago
    • Promoted
    Senior IoT Security Consultant

    Senior IoT Security Consultant

    Blue Cloud Softech Solutions LimitedChennai, Republic Of India, IN
    Job Title : Senior Cybersecurity Consultant – Product & IoT Security (ISA / IEC 62443 Certification & Embedded Focus).Chennai, India (Hybrid / WFH as per company policy). We are seeking an expert cyberse...Show moreLast updated: 1 day ago
    • Promoted
    Senior Information Security Engineering Consultant, ITC

    Senior Information Security Engineering Consultant, ITC

    ConfidentialIndia
    Candidate will primarily be part of Application Security Consulting team and work with your peers in Corporate Information Security and partner with internal groups, GT domains across Nike, reporti...Show moreLast updated: 4 days ago
    • Promoted
    Information Security Analyst I

    Information Security Analyst I

    Airtel DigitalNew Delhi, Republic Of India, IN
    The Security Operation Centre (SOC) Information Security Analyst is the first level of monitoring in the SOC.The position monitors and responds to security events from managed customer security sys...Show moreLast updated: 22 days ago
    • Promoted
    Senior Consultant

    Senior Consultant

    Proglitenagpur, maharashtra, in
    We are seeking a motivated and skilled.Network / Cloud / Security Engineer.AWS, Google Cloud Platform (GCP), Cisco Meraki, and Palo Alto firewalls. The ideal candidate will be responsible for design...Show moreLast updated: 22 days ago
    • Promoted
    Information Security Specialist

    Information Security Specialist

    AccopsPune, Republic Of India, IN
    Education : MCA / BE / BTech / ME / MTech (Preferably in Comp Sc / IT / Cybersecurity).Implementation, configuration and management of end-point detection and response (EDR) tools like CrowdStrike Falcon.C...Show moreLast updated: 1 day ago
    • Promoted
    Information Security Consultant

    Information Security Consultant

    Soffit Infrastructure Services (P) LtdCochin, Republic Of India, IN
    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001 : 2022, ISO 27002, and SOC 2 standards for clients. This role involves working i...Show moreLast updated: 30+ days ago
    • Promoted
    Associate Analyst - Information Security

    Associate Analyst - Information Security

    AccopsPune, Republic Of India, IN
    Education : MCA / BE / BTech / ME / MTech (Preferably in Comp Sc / IT / Cybersecurity).Implementation, configuration and management of end-point detection and response (EDR) tools like CrowdStrike Falcon.C...Show moreLast updated: 1 day ago
    • Promoted
    Senior Digital Security Consultant

    Senior Digital Security Consultant

    DotsquaresJaipur, Republic Of India, IN
    We're Hiring : PKI Consultant / Senior PKI Consultant.Public Key Infrastructure (PKI).We're looking for a highly skilled PKI Consultant to join our team. In this role, you will design and implement m...Show moreLast updated: 1 day ago
    • Promoted
    SITA - Lead Specialist - Information Security

    SITA - Lead Specialist - Information Security

    SITA INFORMATION NETWORKING COMPUTING INDIAIndia
    About the job : Overview : WELCOME TO SITA : We're the team that keeps airports moving, airlines flying smoothly, and borders ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Compliance Engineer

    Senior Security Compliance Engineer

    IDfyRepublic Of India, IN
    IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboard...Show moreLast updated: 1 day ago
    • Promoted
    Senior Information Security Specialist

    Senior Information Security Specialist

    ACL DigitalPune, Republic Of India, IN
    We are a leading organization in the field of information security, dedicated to protecting our clients' data and ensuring their digital safety. Our mission is to provide innovative security solutio...Show moreLast updated: 1 day ago
    • Promoted
    Senior Information Security Engineer, Insider Threat, ITC

    Senior Information Security Engineer, Insider Threat, ITC

    ConfidentialIndia
    You will be part of Corporate Information Security (CIS), reporting into the Data Protection Engineering team under Insider Threat. You will work closely with other CIS, Technical Operations, and De...Show moreLast updated: 4 days ago
    • Promoted
    Information Security and Governance Professional

    Information Security and Governance Professional

    Soffit Infrastructure Services (P) LtdCochin, Republic Of India, IN
    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001 : 2022, ISO 27002, and SOC 2 standards for clients. This role involves working i...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Consultant

    Senior Security Consultant

    ConfidentialIndia
    Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP)...Show moreLast updated: 4 days ago