Niyo Solutions - Manager - Information SecurityNiyo Solutions • Bangalore
Niyo Solutions - Manager - Information Security
Niyo Solutions • Bangalore
29 days ago
Job description4+ years of experience in Information Security relation operations. At-least 2 Years of ISO 27001 certifications. Completed CISSP training or certifications. Proven track record in risk management, preferably in the audit or compliance activities, technology, or other pertinent control functions. Proficient in architectural design principles, cyber threat assessments, and the software development life cycle. Type of Security Assessment necessary for Application, Server, Firewall, Cloud and other IT Infrastructure related resources. Proficient with firewalls, endpoint security, mobility management, and vulnerability scanning. Demonstrated expertise in the management of technology and application risks and controls. Understanding of Information security standards, guidelines and controls such as CIS, OWASP, NIST, ISMS etc. Demonstrated aptitude for analysis and problem-solving. Strong organizational skills and the capacity to multitask successfully. Familiar with security best practices in IaaS / PaaS services such as AWS, Azure and Google Cloud. Familiar with MITRE ATT&CK framework. Familiarity with Cloud environment such as AWS, GCP, Azure. Deep understanding of Threat hunting, OSINT, DarkWeb analysis and compromise assessment. Good understanding of Client / Server Architecture, TCP / IP Model and Network Topology. Familiar with OSI Model and associated layer / data units such as network layer and its data units involving Packet, Fragment, Frame, Datagram, and Segment. Familiar with multiple Operating System platforms such as Windows, Linux and Unix. Familiar with popular commercials / open source tools and techniques used by hackers. Familiar with Information Security tools and solutions, category such as SIEM, Vulnerability Scanner, Web Scanner, Mobile App Security Audit, Cloud Security Audit etc. Familiar with different Technology stack such as ELK (Elasticsearch, Logstash, Kibana), Server Less, Lambda etc. Knowledge of Security testing methodology, and other international industry recognised standards and guidelines including CIS controls in depth. Demonstrate strong understanding of Open Source technologies, framework, tools and trends. Up-to-date on general cyber security risks and threat landscape / Cyber Security Community engagement. Aware of general cyber security practices needed by computer and internet user. Strong written and verbal communication skills expected ability to communicate security and risk-related scenarios to both technical and non-technical stakeholders. Strong knowledge of Word, Excel and PowerPoint for professional documentations. BCA / BSC / B Tech (CS / IT) / BE (CS / IT) / Diploma holder (IT / Computer / Network). Work Experience : 6- 10 Years of total work experience. Minimum 4+ Years experience in Information Security operation related roles. Preferred Certifications CISSP, CRISC, CISA, CISM, CCSP and ISO 27001.
PROFILE : ISM / Information Security Manager.
Niyo Information Security function looking for a candidate who can manage Information Security operations in order to maintain and improve Information Security practices, governance and control desired from the role.
Area Of Responsibilities :
- Provide support to GRC team with artefacts / evidence collection required by them during ISMS, Internal and External Audits.
- Facilitate support and coordination required during any audit activities.
- Track compliance & Reviews of periodic ISMS activities such as Disaster Recovery related drill, Backup & Restoration, Change Management, IP Whitelisting / ACL, Access and Roles Reviews, IS Signoff for new development and features etc.
- Control adoption of ISMS / Information Security Policy across all department and function.
- Track effectiveness of Information Security department specific KPIs.
- To ensure current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement done on time.
- Oversee technological upgrades, improvements and major changes to the information security environment.
- Perform periodic review of Change Management, Rules and Configuration.
- Review control compliance required before Information Security Sign-off.
- Review of Information Security events monitoring and Incidents.
- Periodic review of Information Security related supplier for its SLAs.
- Review Information Security Effectiveness measurement metrics across department and function as per documented procedure and associated templates.
- Manage Information security awareness related training to organization personnel.
- Provide Information Security training for new onboarding.
- Manage Information Security specific subscription / license and certification and periodically review Information Security related spending to align with the Budget cap.
- Manage and Control issuance of Digital Certificates and Encryption Keys.
- Serve as a focal point of contact for the information security team and the Vendor / Partner or organization.
- Communicate information security goals and new programs effectively with other department managers within the organization.
- Evaluate and assess any platform or solution required within Information Security function and ensure effective deployments and its efficient use.
- Periodically undertake the Incident Response simulation / table-top exercise and drill to test its effectiveness.
- Create and publish reports, dashboards, metrics for Information Security operations and presentation to Department Head / Management.
- Providing Department Head / Management oversight with a realistic overview of risks and threats in the technology environment.
- Manage the process improvement within the Information Security function.
- Identify, assess, and resolve complex issues within own area of responsibility.
Desired Skills :
Eligibility :
(ref : hirist.tech)
Create a job alert for this search
Information Security Manager • Bangalore
Related jobs
Information Security Engineer
Mindsprint • Bengaluru, Karnataka, India
The Factory (ICS / OT) Security Lead Engineer will be responsible for the Security Risk assessment and implementation of Factory Security Program and Practices for Mindsprint Customers.This position...Show more
Last updated: 7 days ago • Promoted
Information Security & Compliance Lead
Navi • Bengaluru, Republic Of India, IN
At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data.
We lead the charge on cyber risk management, regu...Show more
Last updated: 30+ days ago • Promoted
Associate Manager II - Cyber Security
Navi • Bengaluru, Karnataka, India
At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data.
We lead the charge on cyber risk management, regu...Show more
Last updated: 30+ days ago • Promoted
Senior Engineer - Information Security
IBS Software • Bengaluru, Karnataka, India
Bangalore / Trivandrum / Cochin / Chennai.We are seeking a highly skilled and motivated Lead Offensive Security Engineer with 4–6 years of hands-on experience in offensive security and red / purple team en...Show more
Last updated: 10 days ago • Promoted
Information Security Lead
Philips • Bengaluru, Republic Of India, IN
As a Senior Information Security Lead, you will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security program while ensuring compliance with regulatory r...Show more
Last updated: 30+ days ago • Promoted
Senior Manager - Information Security And System Audit
slice • Bengaluru, Republic Of India, IN
The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.
The role involves conducting security ass...Show more
Last updated: 30+ days ago • Promoted
Cybersecurity Program Lead
Philips • Bengaluru, Republic Of India, IN
As a Senior Information Security Lead, you will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security program while ensuring compliance with regulatory r...Show more
Last updated: 1 day ago • Promoted
Information Security Risk Manager
Confidential • Bengaluru / Bangalore
The Information Security Risk Manager will be responsible for identifying, assessing, and mitigating information security risks within the organization.
This role involves developing and implementin...Show more
Last updated: 30+ days ago • Promoted
Mashreq - Manager - Information Security
Mashreq Global Services Private Limited • Bangalore, India
Management : - To Strategize, develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally.
To ensure compliance of the Organ...Show more
Last updated: 30+ days ago • Promoted
Senior Information Security Compliance Manager
Skyhigh Security • Bengaluru, Republic Of India, IN
Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry.Our mission is to protect the world’s data, and because of this, we live and breathe security.We v...Show more
Last updated: 30+ days ago • Promoted
Lead, Information Security and Compliance
slice • Bengaluru, Republic Of India, IN
The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.
The role involves conducting security ass...Show more
Last updated: 30+ days ago • Promoted
Information Security Program Manager
Societe Generale Global Solution Centre • Bengaluru, Republic Of India, IN
Ability to identify, propose, design and run the operational and security risk Controls.Sound understanding of various cybersecurity controls and their relevance to handle various threat scenarios....Show more
Last updated: 12 days ago • Promoted
Senior Manager - Information Security and System Audit
slice • Bengaluru, Karnataka, India
The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.
The role involves conducting security ass...Show more
Last updated: 30+ days ago • Promoted
Senior Engineer / Asst. Manager - Cyber Security
TÜV SÜD • Bengaluru, Karnataka, India
Keep up to date with the latest in standards, regulations and technical developments in the cyber security space.Actively co-develop the security programs and details test method according to ITSAR...Show more
Last updated: 12 days ago • Promoted
Information Security Audit Manager
HCLTech • Bengaluru, Republic Of India, IN
The position is a member of Risk & Compliance org within HCL Technologies.The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accorda...Show more
Last updated: 30+ days ago • Promoted
Information Technology Risk Manager
CSC • Bengaluru, Karnataka, India
The IT Audit and Risk Manager is an essential role to assist our business with making risk informed decisions.The position is responsible for supporting the security direction of the business and e...Show more
Last updated: 4 days ago • Promoted
Senior Security Governance Lead
Philips • Bengaluru, Republic Of India, IN
As a Senior Information Security Lead, you will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security program while ensuring compliance with regulatory r...Show more
Last updated: 1 day ago • Promoted
Information Security Strategy Lead
Philips • Bengaluru, Republic Of India, IN
As a Senior Information Security Lead, you will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security program while ensuring compliance with regulatory r...Show more
Last updated: 1 day ago • Promoted