- Skill Set: ISO 27001 ISMS Lead Auditor (LA),
- Total Experience: 15.00 to 15.00 Years
- No of Openings: 1
- Job Post Date: 23/06/2022
- Job Expiry Date: 23/07/2022
- Domain: IT
- Location: HYDERABAD [India]
Professional certification (CISSP/CISM/CRISC and ISO 27001 Lead Implementer/Auditor or similar).
Proven experience across security governance, risk and compliance domain.
In Depth Understanding of ISMS
Experience in building and supporting information security risk assessments and management process.
Lead Risk Management program for the origination while ensuring accountability in multi stakeholder environments.
Lead the security governance for the organization while ensuring defined KPIs and KRIs are met
Prepare governance dashboard to show the effectiveness of KPIs and KRIs to CXOs.
Plan, execute and lead security audits and consulting projects across multiple organizations.
Evaluate the efficiency, effectiveness and compliance of operation processes and IT systems with corporate security policies and related government regulations.
Execute and properly document the audit process on a variety of computing environments and computer applications.
Assess the exposures resulting from ineffective or missing control practices.
Accurately interpret audit results against defined criteria. Weigh the relevancy, accuracy and perspective of conclusions against audit evidence
Provide a written and verbal report of audit findings.
Develop rigorous best practice recommendations to improve security on all levels
Work as consultant to answer customer queries ensuring security recommendations comply with industry standards.
Collaborate with departments to improve security compliance, manage risk and bolster effectiveness
Working knowledge of regulatory and industry data security standards (e.g. HIPAA, PCI, SOC2, SOX, NIST, GDPR, TARA)
ISO 27001/27002/9001/62443, ITIL and COBIT frameworks.
Public and Private Cloud assessment experience.
Design, configuration review and VAPT experience.