Responsible for execution of variousInformation Security controlsand processes, daily security monitoring tasks and various weekly /monthly security controls & reporting activities (such asmonitoring access logsandsecurity violations , analyzinguser access requestsand conducting periodicaccess reviews , data collation /analysis & reporting, managing various security control books and procedural documentations etc.). shall be responsible for execution of controls related to Regulatory & Head Office guidelines and ensuring compliance to those, conducting investigations and reporting ofsecurity incidents . He/ She shall be involved in impartingsecurity training and awarenesssessions. shall be responsible for execution of various Security controls for the organization, and should be able to execute and improve theIT Security KRIsand appropriate reporting thereof. shall be responsible to performIT Security Risk assessmentsof new & existing processes, projects and applications / infrastructure. The incumbent shall be able to continuously analyse bank’s information security program, implementation & execution of defined controls, and work towards sustained compliance to those and improvement of the same.Experience & Qualifications Detailed understanding ofIT Security and Infrastructure practices , operations, standards and frameworks. Good working knowledge of performingIT Security risk assessments Good working knowledge ofIdentity & Access Mgmt (IAM)–user access reviews , related controls,system access matrix , RBAC etc. Good working knowledge of Data Protection & Security, DLP, data encryption etc. Good working knowledge ofhandling information security incidents . Good working knowledge inVulnerability Assessments(VA /PT) and/orSystem Security Hardeningand appropriate remediations. Good working knowledge ofSIEMtools and /or otherSecurity Monitoring Tools , and handling Security Incidents. Fair understanding / Experience of working on Audits – data collation for Audits etc – would be preferred, but not mandatory. Good working knowledge onMS Office tools like Excel,Powerpoint would be essential. Should be well versed with various functions and data handling techniques in Excel. Ability to execute / implement Information Security Operations processes, and perform daily / weekly /monthly security controls and tasks. Ability to work on routine security activities as well complex technical security projects and initiatives. Proven track record in IS processes execution and enhancements.Experience: Around 2 to 3 years of progressive experiencein the field ofInformation & Cyber Security , including experience in either Data security,Access & Identity Managementor IT / Cyber Security,Security Operationsin a global environment. Experience in BFSI or Banking environment would be preferred, but not mandatory.Qualifications: Must have completed a Bachelor’s degree (preferably BE / B.Tech.). A Master’s degree in Information Systems will certainly be preferred.
Job Title
Information Security Officer