Senior Manager – InfoSec Governance
International Luxury Hotel Association
full-time
Posted on:
Location Type: Hybrid
Location: Pune • 🇮🇳 India
Visit company websiteJob Level
Senior
About the role
- Manage the information security governance, risk, and compliance process.
- Standardize GRC policies, evaluate their impacts, and implement the relevant measure.
- Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk Management to remediate new and outstanding issues; track security-related issues in the electronic GRC system.
- Develop and maintain a robust threat intelligence gathering and monitoring plan.
- Review external threat Advisories and determine relevance to organization and design an appropriate response strategy.
- Conduct assessment / review of IT processes and recommend action for improving IT governance maturity using reference frameworks like ISO 27001/ ITIL/others.
- Provide reports to senior management for review of information security risks, governance and compliance.
- Ensure compliance with organizational information security policies and procedures.
- Manage security incidents and policy exceptions.
Requirements
- BE / BTech / ME / MTech / MBA with specialized Infosec certifications such as CISSP, CISA, ISO 27001 LI/LA, CISM
- Bachelor of Engineering or equivalent
- 13-15 yrs of experience in the field of Information Technology & Security audits
- At least nine (11) years of Information Systems & Security audit experience
- Extended Knowledge of IT Security.
- Experience in implementing IT controls within the IT governance framework and designing overall governance framework.
- Good Understanding of Risk and Compliance concepts and Tools
- Good communication and documentation skills.
Benefits
- Attending office in-person at the base location as and when required.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
information security governancerisk managementcompliancethreat intelligenceIT governance maturityISO 27001ITILIT controlssecurity auditsinformation systems
Soft skills
communication skillsdocumentation skillsorganizational skillsinterpersonal skills
Certifications
CISSPCISAISO 27001 LI/LACISM