Lead / Information Security Analyst

Job Description

Apply Now

Location: Nanded City, Pune

Report to: Manager Compliance

Purpose of Position: Handle daily Infosec operations, answering questionnaires, attending client calls, compliance measurements.

Major Responsibilities:

  • Research security enhancements and make recommendations to management

  • Stay up-to-date on information technology trends and security standards

  • Investigate security breaches and other cyber security incidents

  • Document security breaches and assess the damage they cause

  • Stay current on IT security trends and news

  • Risk management

  • Answer security questionnaires

  • Handling client calls for info sec

  • Development, documentation, and maintenance of information security policies, procedures, and standards

  • Initiates, facilitates, and promotes activities to create information security awareness throughout organization

  • Monitors and routinely audits compliance to all information security procedures and policies, and ensures consistency of internal controls and software compliance

  • Observes changes in regulations and accreditation standards affecting information security, and makes recommendations on the need for policy changes

  • Coordinates response to legal requests for data protection, legal hold, access, etc.

  • Coordinates the response to, investigates, escalates, mitigates, and reports actual and attempted cyber security incidents and communicates in alignment with a cyber-incident communication plan

  • Vendor Management - Evaluate new tools, prepare BOM, negotiate

  • Deep understanding of infrastructure (data center, network & end user computing) security / cloud security / managed security services / security operations center / compliance & risk management

Competencies:

General Skills:

  • Knowledge on any of the following security standards

  • ISO27001

  • HIPAA

  • HITRUST

  • HITECH

  • SOC2

  • EHNAC

  • PCI DSS

  • NIST

Technical/Domain Skills:

  • Experience on answering security questionnaire

  • A high sense of urgency and deep interest in serving the customer

  • Hands on functional understanding of various technologies in security

  • Proven track record in Pre-Sales, IT Outsourcing

  • Self-motivated individual with excellent interpersonal skills, flexibility and team work capabilities

  • Proven track record in RFI and RFP response (Pre-Sales, Solution design & development, Proposal response and presentation) in the area of Cyber Security Solutions by strongly collaborating with larger infrastructure, applications, Cloud and Digital functions

  • Knowledge and experience managing IT security programs including governance, policies, risk management, architecture, and awareness

  • In depth knowledge of operating systems, network elements and protocols, encryption tools, client-server and web architectures, firewalls, and intrusion detection/prevention systems, patch management, antivirus etc.

  • Familiarity with application security, databases technologies, identity, and access management

  • Knowledge in network protocols such TCP/IP, UDP, HTTP, TLS, SMB, SSH, RDP and any other prominent internal protocols

  • Ability to present to a variety of audience from technical to managerial

  • Ability to align the Cyber insider threats to the impact on the customer business of the customer etc.

  • Language requirement: fluent in English, excellent communication and personality

  • Understanding of cloud security solution and Security architecture and design experience

  • Experience within the domain of information systems and security/data protection

  • Excellent oral and written communication skills

Education:

  • BE / B. Tech Preferred

  • Degree or PG in Computer Science or IT

  • Full Time Technical Diploma

Work Experience: 7-8 years of experience

Certification: CEH, ISO 27001-2013 LA, Any certification in IT security / Information security

Desired: CISSP / CISM

Advantage: CISA

Note:

The Job Description is subject to change from time to time, as per the requirements of the Company and the competencies / qualifications you may acquire in future.

Apply Now