Information Security Officer
dentsu Austria
full-time
Posted on:
Location Type: Office
Location: New Delhi • 🇮🇳 India
Visit company websiteJob Level
Mid-LevelSenior
About the role
- Manage information security for India
- Deliver information security initiatives across India, ensuring controls and culture are maintained
- Support business security requirements, leveraging global and regional capabilities
- Build positive stakeholder relationships across India
- Partner with tech, business and global functions teams to deliver security initiatives
- Communicate and support adherence of the Information Security policy and standards framework
- Work with global centre of excellence teams to ensure policy, standards and projects have local context
- Manage information security projects and coordinate resources with regional Technology and business stakeholder staff and external groups
- Perform periodic security risk assessments of region markets and brands
- Ensure the business’ information security risk profile meets corporate goals and is maintained/improved over time
- Assess the scope and impact of incidents and respond with urgency, following appropriate policies and procedures
- Perform "root cause” analysis for major incidents to identify and remediate information security issues
- Manage requests relating to client security, e.g. RFPs, client audits
- Assist stakeholders with BCP/DR test planning, execution, training and maintenance projects
- Support Internal Audit to manage regional audits, including remediation of findings
- Support supplier security processes where onsite supplier reviews are needed
Requirements
- Experience of security compliance initiatives within an enterprise technology environment such as ISO 27001, NIST CSF, CSA, PCI DSS, Cyber Essentials
- Experience operating in a matrixed organisation to meet requirements of diverse stakeholders.
- Experience of acting as internal security consultant for project teams and business partners.
- Track record of supporting information security in a diverse, fast-paced enterprise environment.
- Knowledge of all domains within security covering people, process and technology
- Understanding of security risk analysis techniques
- Understanding of network architecture, protocols and principles (desirable)
- Ability to explain technical complex concepts to non-technical audiences combined with excellent communication and organisational skills
- Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel
- Stakeholder management and interpersonal skills at both a technical and non-technical level
- Diligent and thorough approach to problem solving
- Comfortable with managing uncertainty, ambiguity, and change in order to make decisions and recommendations
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
ISO 27001NIST CSFCSAPCI DSSCyber Essentialssecurity risk analysisnetwork architecturesecurity complianceinformation security managementroot cause analysis
Soft skills
communication skillsorganizational skillsstakeholder managementinterpersonal skillsproblem solvingability to explain complex conceptsadaptabilitydecision makingcollaborationdiligence