Yes Bank - Senior Manager - Information Security - Risk Management

Maintenance activities for ISO 27001

- Review ISMS, policies, Procedures and hardening documents.

- Review Risk assessment for the Bank

- Manage Information Security awareness program

- Perform internal audit for ISO 27001 and information security policy compliance.

- Perform Third Party Information Security Assessments of partners providing services to the Bank.

- Ensure upkeep and review the data flow diagrams with units

- Coordinate with various internal stakeholders for closure of all open IS issues /audit findings.

- Security Awareness of all users - Employees, Contractors, partners and customers

- Review approvals for user ID requests and other access requirements.

- Risk assessment of banking solutions/ applications

- Experience to data and network security tools would be added advantage

- Bachelor degree in engineering (Preferably Electronics, IT or Computer technology)

At least one Certifications from following should be done. ISO 27001 LA / Implementer, CISA, CISM, CISSP