Thanks for usingCareesma. Job Offer printed on the 13/12/2018.

Information Security Incident Management

Mumbai, Maharashtra

Placewell Consultant

Job Description

Manager or manager of people (to include number of reports) or individual contributor: Individual contributor
Geographic scope of role: Global
Budgetary and risk management responsibilities: N/A
Revenue responsibilities: N/A
Others: N/A

#Principal Duties/Responsibilities:
*Incident Management (75 %):
- Confirming whether reported incidents are actually security incidents
- Classifying the incident according to Organisations incident classification categories
- Managing security incidents to ensure they are confirmed, contained, and remediated in a timely manner
- Escalating incidents within Information Security when required
- Ensuring a root cause analysis is performed when appropriate
- Ensuring all required documentation is recorded
- Operationalize actionable intelligence reports from the Threat Intelligence team and external sources
- Coordinate the initial workflow and response for varying incident types with internal and external teams
- Collaborate with operational support staff to ensure they are actively engaged in potential security threats and concerns
- Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
- Communicates alerts regarding intrusions and compromises to network infrastructure, applications and operating systems along with Data Leakage incidents.
- The candidate must have insight into industry trends, current attack techniques, threat intelligence .
- Constantly evaluate the ever-changing threat landscape, take feedback from stakeholders, clients to determine any gaps organization may have with their existing policies and programs

*Business As Usual (25%)
- Supporting business and clients requirements, including responding to client enquiries which come to the ad-hoc mailbox.
- Forwarding enquiries to the appropriate teams
- Undertaking such other tasks and responsibilities as assigned by the CISO / ISM

#Communications and Relationships:
- With the CISO, IT Security Directors and security team; Information Security Programme Manager and project managers, Risk & Compliance, Legal, Audit, IT, Procurement and other support functions as well as operational management and client-facing teams.
*External: Customers and suppliers

- Global Business Knowledge
- Cross-Cultural Resourcefulness
- Cross-Cultural Agility
- Assignment Hardiness
- Cross-Cultural Sensitivity
- Humility
- Conflict Management
- Organizational Agility
- Customer Focus
- Integrity and Trust
- Personal Learning

#Required Qualifications, Skills, Knowledge, Experience:
- Qualified to degree level, preferably in a business, IT or security related subject.
- Be interested in developing skills and knowledge in information security, and willing to work towards appropriate professional qualifications, such as Security+, CEH, CHFI & CISSP.
- Formal training in security, risk management or compliance is beneficial.
- Whilst this is not a hands-on technical role, the role holder will be expected to demonstrate a strong awareness of technology and how IT is used to enable business processes.
- Skill in recognizing and categorizing types of vulnerabilities and associated attacks
- Ability to work with business, security, Legal, and IT representatives
- Ability to document and escalate Security Incidents including events, history, status, and potential impact
- Proven ability to work in global collaborative group environment
- Experience working with a high degree of autonomy, managing own workload and delivering to tight timescales
- Strong communication skills, both oral and written
- Strong organizational skills
- Basic understanding of global privacy and breach notification requirements
- Basic understanding of chain of custody and evidence preservation
- Strong IT and analytical skills
- A solid foundational understanding of TCP/IP and networks to include firewalls, routers, and ACLs
- Ability to convey security concepts related cyber security events to both technical and non-technical audiences
- Proactive rather than reactive
- Team player with good interpersonal skills
- Ability to work under pressure to tight timelines
- Organised and methodical
- Willing to challenge and desire to learn
- Good communication skills, both orally and in writing
- Ability to communicate and collaborate effectively with other team members in a geographic and culturally diverse workforce

Company Description

Having forged a strong network of corporate relations, with our ability to serve them for HR... requirements and training Programmes with our Expertise acquired through years, Finish assignments before deadlines, along with being accurate to the requirements, has made us a force in reckoning.   Read full description

Additional Information

Last updated:
Job type:
Full time
Position type:
Minimum experience:
Between three and five years
Compulsory Education
Jobs in Banking / Financial Services
Go to Top