Job Description

Job Family Descriptor Job description Experience 1. Overall experience - Min 12-15 years 2. Relevant experience - Min 8-10 years Skills: 1. Communication including presentation. 2. Collaboration with multiple stake holders 3. Ability to corelate & articulate 4. Risk based thinking. 5. Strong working knowledge in information security and its controls, regulations, Privacy laws, auditing etc 6. Experience in writing/ developing documentation 7. Experience responding to, analyzing, and communicating information security incidents. 8. ability to work in multicultural and diverse environments Certification : 1. Certification related to information security or GRC is mandatory. (CISA/COBIT/CISM etc) Roles & Responsibilities: 1. Implementing, managing, reviewing and improving internal controls for governance, compliance and quality, IT audits, or assurance and risk management programs 2. Manage internal audit program including auditing 3. suggest/advise the management regarding the business risks and provide mitigation plans 4. Manage the implementation of security programs & IT security governance in the organization. 5. Provide support to Business during RFP stage to understand the customer requirements and Share inputs regarding compliance to the clauses (information security, business continuity, Privacy etc) 6. Accountable for ensuring all the essential guidelines are put in proper place accurately adhering to industry/legal rules and regulations 7. Highly skilled in designing and implementing compliance and control frameworks. 8. Most of the rules, regulations, and policies within the organization need detailed analysis. It\'s essential to pay attention to all the minute details. 9. Develop and implement effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation. 10. Execute strategy for dealing with increasing number of audits, compliance checks, external assessment processes ISO 27001, ISO 27701, BS10012, Cloud security, ITIL, COBIT etc 11. Require leadership and project management experience, as well as expertise to ensure effective system-wide security analysis intrusion detection standards and testing risk assessment awareness and education and development of policies, standards and guidelines. Broad outline of the Role Design and implement optimized end-to-end work-streams (including processes, tools, responsibility definitions and measures) to improve business management and performance. Provide inputs around processes and deployment of reference models to internal TCL teamsDeploy process improvement processes (Q2C, new product introduction) across the organization Ensure a unified process adoption around new product introduction and related risk assessment and minimize revenue leakages. Capable of identifying key issues and priorities and focusing on these to deliver required results with minimal direction and supervision.Able to independently resolve complex projects, issues, challenges encountered. May be an individual contributor or may lead/mentor small team. Tactical role which provides a marked contribution to defining the direction of new products, processes, standards or operational plans based upon business strategy, with a significant mid term impact on business unit overall results. Education: BE/Btech and MBA Experience: 8-12 years

foundit