Information Security Analyst

Information Security Analyst

By figmdUser / August 1, 2019

Lead / Information Security Analyst

Job Description Apply Now

Location: Pune

Reports to (job): Manager Compliance

Purpose of Position: Handle daily Infosec operations, answering questionnaires, attending client calls and compliance measurements.

Major Responsibilities:

  • Research security enhancements and make recommendations to management
  • Stay up-to-date on information technology trends and security standards
  • Investigate security breaches and other cybersecurity incidents
  • Document security breaches and assesses the damage they cause
  • Stay current on IT security trends and news
  • Risk management
  • Answer security questionnaires
  • Handling client calls for Information Security
  • Development, documentation, maintenance of Information Security policies, procedures, and standards
  • Initiate, facilitate and promote activities to create Information Security awareness throughout the organization
  • Monitors and routinely audits compliance to all Information Security procedures and policies and ensures consistency of internal controls and software compliance
  • Observes changes in regulations and accreditation standards affecting Information Security and makes recommendations on the need for policy changes
  • Coordinates response to legal requests for data protection, legal hold, access, etc.
  • Coordinates the response, investigates, escalates, mitigates, reports actual and attempted cybersecurity incidents and communicates in alignment with a cyber-incident communication plan
  • Vendor Management - Evaluate new tools, prepare BOM and negotiate
  • Deep understanding of infrastructure (data center, network & end-user computing) security / cloud security / managed security services / security operations center / compliance & risk management

General Skills:

  • Knowledge on any of the following security standards
  • ISO27001
  • HIPAA
  • HITRUST
  • HITECH
  • SOC2
  • EHNAC
  • PCI DSS
  • NIST

Technical/ Domain Skills:

  • Experience on answering security questionnaire
  • A high sense of urgency and a deep interest in serving the customer
  • Hands-on functional understanding of various technologies in security
  • Proven track record in Pre-Sales and IT Outsourcing
  • Self-motivated individual with excellent interpersonal skills, flexibility and teamwork capabilities
  • Proven track record in RFI and RFP response (Pre-Sales, Solution design & development, Proposal response and presentation) in the area of Cyber Security Solutions by strongly collaborating with a larger infrastructure, applications, Cloud and Digital functions
  • Knowledge and experience managing IT security programs including governance, policies, risk management, architecture and awareness
  • In-depth knowledge of operating systems, network elements and protocols, encryption tools, client-server and web architectures, firewalls, intrusion detection/prevention systems, patch management, antivirus, etc.
  • Familiarity with application security, databases technologies, identity and access management
  • Knowledge in network protocols such as TCP/IP, UDP, HTTP, TLS, SMB, SSH, RDP and any other prominent internal protocols
  • Ability to present to a variety of audience from technical to managerial
  • Ability to align the Cyber insider threats to the impact on the customer business of the customer
  • Language requirement: fluent in English, excellent communication and personality
  • Understanding of cloud security solution and Security architecture and design experience
  • Experience within the domain of information systems and security/data protection
  • Excellent oral and written communication skills

Education (Required):

  • Education: BE / B. Tech Preferred
  • Degree or PG in Computer Science or IT
  • Full-Time Technical Diploma

Work Experience (Required):

  • 7-8 years of experience

Certification : CEH, ISO 27001-2013 LA, Any certification in IT security / Information Security

Desired : CISSP / CISM

Advantage : CISA

Note: The Job Description is subject to change from time to time, as per the requirements of the Company and the            competencies/qualifications you may acquire in future.

DATA MINING ENGINEER

To be part of FIGmd Data Mining...

WEB TEAM LEAD

We need an individual with proven...

MOBILE LEAD

React Native Technical Lead to lead...

OPERATIONS LEAD

React Native Technical Lead to lead...

SR. NETWORK ENGINEER

React Native Technical Lead to lead...

SR. ANDROID DEVELOPER

To develop Android and React Native...

SR. iOS DEVELOPER

To develop iOS and React Native...

SYSTEM ADMINISTRATOR

Propose technical feasibility solutions...

BIG DATA LEAD

Purpose of this position is to work...

Posted in Job

Leave a Reply

Your email address will not be published. Required fields are marked *