Job Description:

Mumbai, Maharashtra, India

Analyst - Information Security

Experience 0 to 0 yrs

Skills Required Person Specification (Personal attributes essential to performing role eg skills, competencies, expertise, knowledge, experience Note experience not to be time-bound) Technical Skills/Competencies Experience in penetration testing of Web Application/ Network/ Infrastructure/Mobile (Android & iOS) Experience in Source code review Very strong knowledge in Thick client and APIs (REST and SOAP) security testing Strong understanding of OWASP top 10, WASC and SANS top 25 programming errors Strong practical experience on the interpretation and application of information risk and control techniques eg information risk assessment, control design, risk mitigation, risk management Ability to work with the development, integration, and infrastructure teams in implementing security controls Strong negotiation and influencing skills to determine an outcome that is mutually acceptable to all parties concerned Strong communication skills to communicate complex material to a wide and varied audience in a clear and concise format Exercise discretion and maintain confidentiality related to privileged information (eg, security, personnel, legal, or financial) Ability to articulate vulnerability and risk based on technical security posture Analysis/lateral thinking and understanding of financial business process Strong facilitation and presentation skill sets Tools BurpSuite, Postman , Echo mirage, AppScan and other security tools Development knowledge on PHP/NET would be added advantage Education & Experience Essential B Tech or relevant degree with proven experience in the information security ISO27001 Lead Auditor 3-5 years of domain experience

Job Summary Overall Job Purpose To identify, evaluate, and improve overall security posture of enterprise Conduct risk assessment & develop, maintain & improve policy/procedures that minimize risk to organization Develop plans, goals, objectives, and other project management aids for the implementation of ISO 27001 implementation in MHRIL Analyse various data sources (RCA, Risk Events, BIA audits, etc) to identify pervasive control weaknesses and areas of control deficiency Support and govern the process by which identified control issues of organisation level significance are escalated to Steering Committee and management Provide expertise to support management in documenting the control issues and defining relevant and robust remediation strategies to mitigate and close significant control issues Exposure to PCI DSS Key Accountabilities Information Security Implement Asset labelling and classification guidelines for all MHRIL Manage and mitigate all information security risk with in MHRIL Implement a robust information security awareness program across MHRIL Ensure all third party risks are mitigated Conduct security assessment for any third party which MHRIL signs and shares confidential data Ensure LAM (Logical access management) and JML (Joiners, movers and leavers process is established in MHRIL for all operations and support functions This includes all requirements of LAM standard including that of recertification Work with processes across MHRIL to develop plans and processes to improve their management of information in key risk areas Work with processes/ operations to provide guidance and support for standard queries relating to policies, standards and risk management Manage the investigation and reporting of information risk events Ensure Joiners-Movers-Transferees and leavers are appropriately authorised, monitored and removed Ensuring user access review is done periodically and maintain all relevant evidences Ensure implementation of ISO 27001 as per scope defined for MHRIL

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Hotel/Travel/Tourism/Airlines/Hospitality
Functional Area : IT Software : Software Products & Services
Role : System Security
Salary : As per Industry Standards
Deadline : 18th Apr 2020

Key Skills:

Taking these free online tutorials can help you get your next job

People who search this job also searched for the following Keywords


Salary trends based on over 1 crore profiles

View Salaries

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd Protection Status