- Entry level
- No Education
- Salary to negotiate
(Posting). •Strong domain experience in Third Party Risk Assessment or Vendor Security Risk Assessment, IT Security reviews or IT audits or ISMS / ISO 27001 reviews or ISMS / ISO 27001 implementation
•Working knowledge of overall Third Party risk management process and conducting/participating on internal/external risk assessments and remediation process.
•Must have experience of setting up policy, process, procedure and the overall framework for third party risk management.
•Hands on experience with implementation of such processes into a automated platform
•Experience with defining vendor prioritization, harmonization of assessment questionnaire, launch and review process and risk treatment and exception processes
•Experience across multiple Information Security domain i.e. IT Regulatory/policy Compliance, IS Governance, Risk Management, IT Infrastructure Security
•Strong knowledge of information security concepts, risk and controls concepts
•Strong knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST etc.
•Expert in industry leading best practices of TPRM like BITS SIG, Shared Assessments etc.
•Good knowledge of Security architecture design and review
•One or more certifications such as CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer
•Open to learning and working on new domains and technology
•Good written and spoken communications skills
•Expert in developing & implementing Enterprise level Security, Risk & Compliance framework
•Expert in conducting Vendor risk assessments and understand risk exposure of technology deficiencies and translating them to business impact
•Knowledge of defining risk metrics and attention to detail and diligence
(1.) To adhere to quality standards, regulatory requirements and company policies (2.) To provide support for on call escalations and doing incident & problem management (3.) To independently resolve tickets & esnure that the agreed SLA of ticket volume and time are met for the team (4.) To ensure positive customer experience and CSAT through First Call Resolution and minimum rejected resolutions / Reopen Cases (5.) Work on value adding activities such Knowledge base update & management, Training freshers, coaching analysts & conducting interviews/participation in hiring drives (6.) To participate or contribute on EN business in creation of proposals to drive Service improvement plans.
Experience 7-12 Years
Qualification BE/B.Tech (Hons)
Post Graduate Program in Management
No. of Positions 1
Skill (Primary) Infrastructure Management Services (IMS)-Security-Audit and Consulting
About the company