Job Description Role: Information Security Consultant

• BISO Office

Location: Bengaluru preferred

About the role:

BISO Office is responsible for ensuring all security risks, compliance management pertaining to business delivery and acting as a primary touch point, integration between CISO team and business team, while supporting business on client’s security and compliance requirements.

Information security consultant is a lead role supporting a BISO in accomplishing the above objectives

R͏oles & Responsibilities

• Provide Information security risks, compliance services based on Industry best practices standards such as ISO27001, NIST, SOC, PCI and SOX

• Support implementing security plan for overall security and risk management function for the engagements and BU

• Ensure adherence to client contractual requirements for Information security risks, compliance services

• Align and integrate Information security risks and controls for the engagement with customer goals

• Facilitate regular security risk assessments to identify risks, gauge compliance with contractual security obligations and drive continuous security improvements.

• Work with service line leaders in CISO organization to monitor, evaluate comprehensive security measures to protect against threats to security, privacy of client sensitive information for BU

• Establish periodic connection with different service line team within CISO organization

• Drive security awareness within the BU and engagements

Q͏ualifications

• Bachelor’s degree in computer science or relevant filed

• Relevant work experience of 8-12 years

• Security certifications such as CISSP, CISM, CISA, CRISC, CCSK desired

• Strong experience in understanding and deployment of ISO27001, NIST

• In depth understanding of network and system security technologies and practices across networks, firewalls, IDS / IPS, Secure cloud environment

• Proven experience in Information Security and risk management, especially with Technology risks, IT audit, Compliance needs in large enterprises

• Experience of SOC 2, PCI DSS assessment and ISMS control implementation

• Strong understanding of DLP, e-discovery, Data flow mapping and processes

• Excellent written, verbal communication and strong organization skills, fluency in oral and written English

• Strong collaboration skills and willingness to be a team player to solve problems and incorporate inputs from various teams, sources.

• Independent thinking and willingness to take reasonable and calculated risks