Senior Information Security Analyst

Information Security Responsibilities

• Awareness on information security measures such as acceptable use of information assets, malware protection, password security
• Understand and report security risks and how they impact the confidentiality, integrity, and availability of information assets
• Understand how data is stored, processed, or transmitted from a Data privacy and protection standpoint.

Roles and Responsibilities

• Ensure that the processes of the Information Security Management System, and Data Privacy & Protection measures are established, implemented, and maintained. 
• Participate in short- and long-term planning. Monitor compliance with Information Security standards, Data Privacy & Protection requirements. 
• Review information security-related clauses in Client/supplier agreements or addendums such as DPA.
• If required, measure the effectiveness of Information Security controls and make corrections/improvisations. 
• Coordinates and prioritizes information security initiatives. 
• Works with information security forum and management to accomplish information security & Data Privacy goals. 
• Assist in the completion of Supplier/Customer Security questionnaires. 
• Plan and conduct internal audits. Facilitate external audits like ISO, SOC etc. 
• Reviews instances of noncompliance and works effectively and tactfully to correct deficiencies. 
• Work with IT & various functions to address identified vulnerabilities and track it to closure. 
• Participate in risk management exercises for all business and corporate functions. 
• Conduct effective analysis of information security violations, security incidents and computer crimes. 
• Support business continuity and disaster recovery planning. 
• Support building and maintaining the company’s incident response playbooks for various incident scenarios. 
• Verify third-party vendors' security and collaborate with them to meet security requirements. 
• Liaison with External Agencies on matters relating to information security & Data Privacy

Preferred Qualifications

• Strong knowledge of Information Technology 
• 3-5 years of experience in information security, IT audits, information security auditor, and/or previous role as an information security officer 
• Relevant certification or experience in ISO27001:2022 or other information security or cybersecurity frameworks.
• Good communication skills, both verbal and written 
• Ability to manage multiple tasks and change priorities. 
• Ability to work collaboratively in a team. 
• Willingness and ability to explore and learn new areas