Deputy General Manager - Information Security

DGM Information Security with a Top Brand [Mumbai,Lower Parel ,5 Days, WFO].

Education:

- Engineering Graduate/postgraduate or Global Equivalent Degree.

- CISSP, CISM, CISA certifications (any one or more).

Experience:

- 8-10 years of relevant work experience.

- In-depth knowledge of network protocols and network connectivity concepts.

- Knowledge of various information security standards such as ISO 27001, ISO 27018, NIST etc.

- Proficiency in firewall and internet technologies.

- Well conversant with technologies such as SIEM, IAM, AV/EDR, DLP etc.

- Good understanding of cloud security especially in AWS and Azure domains.

- Familiarity with secure access control mechanisms.

Duties & Responsibilities:

- Information Risk Management and Compliance.

- Develop and implement a robust Information Risk Management Framework for the organization.

- Drive all Information Security activities, including compliance with ISO 27001, ISO 27018 standards, updates, user training and awareness, and internal audits to ensure full compliance with policies and procedures.

- Ensure compliance with ISO 27001 standards, collaborate with the IT teams to deploy security controls across all visa application centres.

- Respond to RFI/RFPs shared by customer teams on business requirements including security and privacy.

- Liaise with Security operations MSP and ensure timely incident remediation.

- Select new security solutions, onboard and integrate it with current technology suite.

- Translate business requirements to security requirements and ability to propose solution and lead the implementation aspects.

- Lead third party risk management program for new and existing vendors including pre-screening, onboarding, ongoing governance and offboarding.

- Establish strong partnership with various functions such as IT, Legal, HR, business and other key stakeholders.

- Security Enhancement and Awareness Initiatives.

- Lead initiatives for continuous improvement in Information Security controls.

- Design and implement an Information Security awareness program to foster best practices.

- Implement safeguards to minimize the risk of data leakage and ensure high standards of Information Security service delivery within time and budget.

- Collaboration and Strategic Alignment.

- Act as the single point of contact for Information Security needs, coordinating with the business account management teams to align with business objectives and strategies.

- Collaborate with regional teams to uphold Information Security best practices and standards across all operations.

- Team Management & Succession Planning.

- Manage and develop staff, including performance management, training, and career development.

- Create and maintain a robust talent pipeline to ensure succession planning.

- Environment, Social & Governance.

- Oversee corporate governance within the assigned region, ensuring alignment with organizational principles, policies, and regulations.

- Promote judicious use of natural resources and adhere to the organization's environment, health, and safety policies, objectives, and guidelines.