Job Title:  Manager | ISO:27001 | Mumbai | Cyber Strategy & Transformation

Your work profile  

• Strong knowledge of cyber / information security concepts, risk and controls concepts. Well versed with global standard such as NIST, ISO, CSA, etc.
• Strong understanding of security-related operational processes in IT environments.
• Strong knowledge of IT Systems, Application and Business functions to a good extend.
• Good knowledge of both cloud infrastructure (SAAS/PAAS/IAAS) and security standard, with related infrastructure and cloud service providers (AWS, Azure, GCP) is a definite plus.
• Strong knowledge of IT infrastructure and Networking, including Firewalls, IDS/IPS and security solution such as DLP, Proxy, SIEM, VPN, EDR, etc.
•  Strong knowledge and experience in carrying out audit based on regulatory guidelines and master direction from regulatory such as RBI, NPCI, SEBI and IRDAI.
• Good Knowledge of cyber threats and vulnerabilities related with IT infrastructure including but not limited to strong understanding of IT general controls (ITGC) and cybersecurity controls.
•  Strong analytical skills, with the ability to interpret and evaluate technical data. With excellent written and verbal communication skills, capable of presenting audit findings to senior management
•  Proven experience conducting cybersecurity risk assessments and advising on remediation, documentations such as RCM, Workpapers, reports, etc. 

Key skills required  

• Good experience in project management and team guidance to meet objective of the assessment with the intention to exceed client expectations.
• • 7+ years of experience in the Cyber Security or IT Audit Domain.
• • Certifications – CISSP, CISA, CCSP, GICSP or equivalent (technology-based certification)