Expoint - all jobs in one place

המקום בו המומחים והחברות הטובות ביותר נפגשים

Limitless High-tech career opportunities - Expoint

EY Manager - Tech Consulting TMT CNS 
India, Haryana, Gurugram 
805337754

29.08.2024

B.E./B. Tech/MCA in Computer Science, Information Technology, or a related field

Minimum 8-10 years

Key Responsibilities:

  • ISMS & BCMS Implementation:
    • Govern development and maintenance of ISMS and BCMS policies, procedures, and controls in alignment with ISO 27001 and ISO 22301 standards.
    • Govern and conduct risk assessments and business impact analyses to identify vulnerabilities and critical business functions.
    • Govern development and implementation effectiveness of security controls and business continuity plans.
  • Audit and Compliance:
    • Engage with external and internal teams to meet various audit and compliance requirements.
    • Organize and coordinate audits, ensuring timely follow-up with stakeholders.
    • Support the assessment and implementation of security and compliance tools and automation.
    • Track identified gaps, implement mitigations, and conduct re-testing.
  • Stakeholder Management:
    • Communicate with stakeholders to discuss identified gaps, proposed mitigations, and updates on security and continuity measures.
    • Provide periodic management updates on the status of ISMS and BCMS initiatives.
    • Resolute issues and conflicts with client stakeholders as in when required for successful implementation and certification.
  • Proficiency with other standards and regulations:
    • Awareness about industry emerging technologies such as Artificial Intelligence, Risk tools, Cloud computing, etc.
    • Ensure compliance with other dependent industry standards and regulations such as GDPR, HIPAA, SOC2, OWASP, NIST, PCI DSS.
  • Knowledge Management:
    • Stay updated with the latest developments in cyber security, risk management, and business continuity.
    • Conduct training and awareness sessions for client stakeholders on ISMS and BCMS practices.

Preferred Skills/Knowledge:

  • Strong understanding of ISO 27001, ISO 22301, ISO 27701, SOC2, OWASP, GDPR, NIST, PCI DSS frameworks, etc.
  • Experience in Telecom security/ Sector.
  • Experience in designing and implementing security controls, risk assessment frameworks, and regulatory compliance.
  • Strong analytical, problem-solving, and decision-making skills.
  • Excellent communication and stakeholder management abilities.
  • Ability to manage large team of 10-15 people.
  • Experience in conducting security audits and assessments