Job Description

:

Job Role

• Handle regulatory compliances (w.r.t. Cyber Security) end to end for Bank
• Act as SPOC for all regulatory (RBI, NPCI, NCIIPC, MeiTY, SEBI, NSDL/ CDSL or any other government agency) advisories / alerts / circulars (refer "Advisories" here after) related to Cyber Security / Information Security / IT Security requirements
• Convert the regulatory requirements from Advisories into action items
• Assessing and assigning responsibilities against the identified action items derived from Advisories
• Tracking and follow-ups for response with teams across the Bank
• Resolve the queries received from bank teams on the requirements
• Validate the responses and evidences received from teams
• Maintain the centralized repository for all responses and evidences for Advisories
• Periodic (e.g. PPI, KRIs etc.) / ad-hoc submissions to regulatory authorities within timeline
• Provide status reports to CISO and Sr. Management on periodic basis
• Dashboards & Presentations for Information Security Review / Board Notes
• Handle periodic audits from regulator / government agencies / internal audits independently for CISO function
• Track findings / observations for CISO function and ensure closure with in stipulated timeframe

• Experience required for the Job: 9-12 years in information technology, security or IT governance
• Experience in Regulatory Compliance / CSITE Compliance; Experience in Banking (Advantage)
• MSc IT / BSc IT / Engineer / Post Graduate / MBA
• Good understanding of IT/Cyber Security Risk
• Certification like CISA / CISSP / ISO27001 / ITIL / CRISC
• Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Malicious Code Security, Security Policies and Procedures, IT controls implementation, BCP-DR documentation and implementation, Project Management
• Good interaction and communication ability
• Capability for aggressive follow-ups and work with deadlines
• Excellent verbal, written communication & presentation skill