Manager - IT Security - Information Security

Responsibilities

• Extended knowledge of end-to-end IT Security concepts

• Good communication, technical writing/diagramming skills.

• People Management skills

• Experience in the IT industry with a strong exposure to IT Operations, Application Security, SOC/SIEM, and/or network administration, IPS and Business Continuity

• Good understanding of financial trading and operating environment

• Must be able to handle customers in a confident, positive and responsive manner

• To know how to define an action plan and to follow up on progress, be organized and meticulous

• Must be motivated, and able to work independently as well as part of a team

• Must demonstrate ethical responsibility, maturity, and discretion

• Microsoft Office tools such as MS Word, MS Excel, MS PowerPoint, SharePoint

• Prepare adhoc presentations for senior management

• Perform projecting spends and impact analysis for new / ongoing projects

• Coordinate with different departments (e.g. Project Services, Performance Management, HR etc.) to gather and analyze information

• Promote a culture of strong information security

• Managing vendor relationship

• Aligning cybersecurity and business objectives

• Collaborate with cross-functional teams to ensure stakeholder satisfaction and timely resolution of issues/tasks

• Analyze KPIs/KRIs and trends to identify opportunities for growth and improvement

• Ensuring that the organization complies with regulatory, exchange requirements, as well as internal policies

• Working hand in hand with management and staff to identify and manage regulatory risk

• Having appropriate disciplinary measures in place in the event of a regulatory breach in order to avoid a future recurrence

• Maintaining open lines of communication with all relevant decision makers and stakeholders in order to keep all parties informed of regulatory changes

• Keeping abreast of regulatory changes and developments in the regulatory environment

• Ensuring that the company is equipped with internal controls that adequately measure and manage the risks it faces.

• Developing and enacting regulatory compliance demands

• Documenting compliance-related processes and maintaining artifacts

Technical & Behavioral Competencies

• Network Security: Hands on understanding and working on network protocols, devices like firewall, VPNs, IDS/IPS

• Threat and Vulnerability Management

• Working knowledge of VAPT, cloud security and Data Security

Specific Qualifications (if required)

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Decision Making

Ability to deliver / Results driven

Communication skills - oral & written

Transversal Skills: (Please select up to 5 skills)

Ability to manage a project

Ability to understand, explain and support change

Ability to manage / facilitate a meeting, seminar, committee, training…

Ability to develop and leverage networks

Ability to anticipate business / strategic evolution

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 10 years

Other/Specific Qualifications (if required)

1. B.E. / B.Tech (ideal) / BSc/MCA

2. Certifications like CISSP, CISA, ISO 27001 are good to have

Minimum 10 years of industry experience required

3. Good understanding of Cybersecurity Domain, Data Privacy Framework and IT Continuity/ Operational Resiliency

5. Experience in IT Risk Management;

6. IT Auditing

7. Regulatory Compliance

Industries:Financial Services, Investment Banking, Management Consulting