Talent.com
This job offer is not available in your country.
Information Security Governance and Risk Specialist

Information Security Governance and Risk Specialist

ConfidentialGurgaon / Gurugram
19 days ago
Job description

Responsibilities

  • Represent Pinkerton's core values of integrity, vigilance, and excellence.
  • Embody the core values of Pinkerton which are integrity, vigilance, and Champion the governance, risk, and compliance (GRC) initiatives, focusing specifically on information security across the global enterprise.
  • Design and sustain rigorous InfoSec policies and controls to preempt security violations and protect against breaches and incidents.
  • Oversee the creation and ongoing management of documentation within the IT Governance, Risk & Compliance domain.
  • Lead the enforcement of Security Assurance protocols, including Vulnerability Assessment and Penetration Testing (VAPT), and Application Security standards.
  • Formulate and conduct comprehensive security audits and process validation for enterprise.
  • Periodically review Security Architecture and configurations to ensure they meet or exceed industry best practices.
  • Carry out continuous monitoring and maintenance of all aspects of Network Security, End User Computing (EUC) Security, and Data Security.
  • Proactively identify information security risks and implement solutions to enhance the organization's security stature.
  • Assess security activities and reports to mitigate potential InfoSec incidents
  • All other duties, as assigned.

Qualifications

  • Bachelor's degree in Information Technology, Computer Science, or related
  • At least 7-9 years of experience in Information Technology, with a minimum of 5 years focused on InfoSec or IT risk governance.
  • Professional certifications such as CISA, ISO / IEC 27001 Lead Auditor, ITIL, Certified Risk and Information Systems Control (CRISC), or Certified Risk and Compliance Management Professional (CRCMP) are highly desirable.

    • Competencies :

  • Expert knowledge of IT Governance, Risk & Compliance as related to information security.
  • Experience implementing and managing Information Security programs such as Data Loss Prevention, Incident and Event Management, Threat Analysis, and Response.
  • Clear understanding of ISMS (ISO / IEC 27001), Risk Management (ISO 31000), and cloud-based security measures.
  • Familiarity with Business Continuity Planning & Disaster Recovery, as well as data protection regulations such as GDPR and DPDP.
  • Proven track record of conducting Internal IT Audits and performing thorough root-cause.

    • Working Conditions :

    With or without reasonable accommodation, requires the physical and mental capacity to perform effectively all essential functions. In addition to other demands, the demands of the job include :

  • Regular computer usage.
  • Frequent sitting, standing, and / or walking.
  • Travel, as required.
  • Must undergo and meet company standards for background and reference checks, drug testing, and behavioural selection survey.
  • Maintain composure in dealing with authorities, executives, clients, staff, and the public occasionally under conditions of urgency and in pressure situations.
  • Exposure to sensitive and confidential
  • Ability to handle multiple tasks
  • Must be able to see, hear, speak, and write clearly in order to communicate with employees and / or
  • Manual dexterity required for occasional reaching and lifting of small objects and operating office equipment.
  • Close and distance vision and ability to adjust.

    • Skills Required

    Compliance, Risk, It Governance, Data Protection, Disaster Recovery

    Create a job alert for this search

    Information Security Specialist • Gurgaon / Gurugram