Hiring for a Micro finance brand in South Bangalore,
Position Summary:
The Chief Information Security Officer (CISO) is a leadership position responsible for establishing the right information security and governance practices and for enabling a framework for risk-free and scalable business operations in the challenging business landscape.
The person will report to CTO and also work closely with the CRO and CAO to monitor, evaluate infosec controls and recommend changes the information security & cyber security measures which are in line with regulatory needs (RBI).
The position is based at HQ in Bangalore, and may require short term travel on need basis to other CAGL offices.
Key Accountability:
- Develop, implement, and monitor a strategic, comprehensive enterprise information security policies and IT/IS risk management program
- Formulate and Review IS Strategy of the organization and implement information security technologies as required to improve security posture
- Creation and periodic review of Infosec Policy and Process including DR and BCP process.
- Develop and enhance an information security management framework
- Participate and work with internal IT audit and regulatory audit teams and internally co-ordinate within IT and various departments to ensure closure of audit points.
- Formulate and work with various committees to ensure the consistent application of policies and standards across all technology projects, systems and services
- Develop and manage the Information Security Awareness Program within the organistion
- Provide leadership to the enterprise's information security organization
- Partner with business stakeholders across the company to raise awareness of risk management concerns
Position Requirements:
Formal Education & Certification:
- Graduation from reputed university, preferably B.Tech, BE, MCA, MTech, MBA (computer science, IT & related fields preferred)
- Attended ISO 27001 Lead auditor training and having good working knowledge of IS27001 standard
- Information security related certification like CISA/CISM/C-CISO
Knowledge & Experience:
- 12+ years or more experience in IT security related roles
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
- Experience in handling or conducting IS audits is preferred
- Good understanding of typical IT risks/vulnerabilities
- IT Risk assessment experience is a plus
Personal Attributes:
- Good & clear communication skills in English
- Good conflict management skills
- Detail oriented, should be able to understand issues/risks end to end
- Adaptable to changing work environment, processes & technologies
Work Conditions:
- Extended working hours if required for support
- On call availability
- Work from home on need basis
Didn’t find the job appropriate? Report this Job