Job Description

Job description - Information Security Manager Role & responsibilities -Shall be accountable for interpreting the RFI/RFP, or Customer queries, and responding to them. -Review Contracts/MSA/DPA to e

Job description - Information Security Manager
Role & responsibilities
-Shall be accountable for interpreting the RFI/RFP, or Customer queries, and responding to them.
-Review Contracts/MSA/DPA to ensure they include appropriate risk-related clauses, such as security controls, data privacy, liability, and business continuity terms.
-Shall be accountable for assessing vendors or suppliers to identify potential risks in areas such as cybersecurity, data protection, regulatory compliance, and operational resilience.
-Participate in meetings with customers, partners, and vendors and be accountable for handling security/privacy-related discussions.
-Work closely with IT, HRD, L&D, and other teams to close any Customer audit observations, and shall be accountable.
-Shall be accountable for tracking the external advisories/threat intelligence to closure.
-Shall be accountable for Enterprise Risk Management.
Eligibility Criteria
-Must have 5 years in a Customer/Vendor role responsible for Responding, clarifying and reviewing Contracts around below standards/models/industry best practices and their mapping to Organizational Practices.
-In-depth knowledge of standards and frameworks such as ISO 9000, ISO 27001, PCI DSS, SOC 2, CMMi, NIST, HIPAA, GDPR, and CCPA.
-Must have led the implementation of security standards like ISO 27001, PCI-DSS, SOC 2, etc.
-Knowledge of privacy regulations like GDPR, PDPD, DPDPA, etc. is preferred.
-Must have faced or facilitated customer or external audits.
-Proven experience in quality assurance, compliance, and risk management. At least more than 7 years of experience in managing the audit.
-Excellent communication and interpersonal skills.
-Strong analytical skills and attention to detail.
-Ability to work collaboratively with cross-functional teams.
-Must have managed a team of more than 3 members at least for 5 years.
-Certification in Quality Assurance or Information Security (e.g., ISO 9001 Lead Auditor, ISO 27001 Lead Implementer, CEH) will be preferred.
Role: IT & Information Security - Other
Industry Type: Software Product
Department: IT & Information Security
Employment Type: Full Time, Permanent
Role Category: IT & Information Security - Other
Education
UG: B.Tech/B.E. in Computer Science Engineering, Information Technology, Computer
Science, Cyber Security, Computers
PG: MCA in Any Specialization, MBA/PGDM in Information Technology