Company: Acme Services
Location: Mumbai Metropolitan Region
LinkedIn post
Job Responsibilities

  • Day to Day management of Infosec & Data Privacy tickets and escalation as necessary.
  • Vendor Assessment - maintain vendor records, including updating SOC 2 / ISO reports for critical vendors.
  • Vendor Assessments – Review new suppliers and ensure they meet BTS / ISO 27001 requirements for data security.
  • Maintaining ISO 27001 Policies for BTS – Ensure policies are reviewed annually and changes documented to ensure compliance during internal and external audits.
  • Complete client data security questionnaires and online assessments as necessary.
  • Review various legal documents – Data Processing Agreements, MSA’s and other contracts that require Infosec input.
  • Assist with the creation, maintenance, and delivery of cyber security awareness training to colleagues.
  • Maintain Risk Register to ISO 27001 standards and ensure all identified risks are documented, remediated, and reviewed as necessary to ensure minimal risk to the business.
  • Maintain Compliance Register with all relevant regulations, legislation, and contractual requirements – GDPR, CCPA etc.
  • Assist with remediation of Corrective Actions identified during internal and external audits.
  • Work with various teams and review DR practises and develop as necessary.
  • Monitor various sources for new or emerging threats that could impact the business and work within team to find solutions.
  • Liaise with stakeholders in relation to cyber security issues and provide future recommendation.

Skills

  • Preferably CISSP certified - If not, would look to certify within 1 to 2 years with ongoing training in data security / privacy field.
  • Organised, analytical, and capable of working on multiple tasks simultaneously, with exceptional attention to detail.
  • Highly pro-active; always a step ahead and on top of tasks at hand whilst keeping an eye on the long-term goals.
  • Strong communication skills both verbally and written.
  • To be able to demonstrate workload prioritization, focus on tasks and personal time management.
  • A relationship builder, capable of managing various internal and external stakeholders.
  • A creative thinker who looks for opportunities to improve existing processes.
  • Independent, a quick learner and comfortable taking on responsibility and testing new solutions and systems.
  • Experience in using Microsoft Office Suite is required (Outlook, Excel, Word & PowerPoint.).
  • A flexible attitude, unphased by unexpected change and ambiguity.
  • A professional individual with a good sense of fun.