Designation: Information Security Analyst
Location: Bengaluru
Experience: Minimum 3 to 4 years of relevant experience
Qualification: BE/B. Tech/B Sc./BCA/M. Tech/ME
Certification: CISA, CISM (preferable)
Job Code: JD2208205
Job Profile:
• The candidate should have at least 3 years of experience in the Information security Governance field.
• Good knowledge and hands on experience of various compliance standards and frameworks like PCI DSS, ISO27001:2013, HIPAA, GDPR.
• Should have knowledge in carrying out Internal Audits, VA, Application Security Assessment, reviews & compliance.
• Audits in compliance to ISO 27001, PCI DSS.
• Risk Assessment and Information Security Audits.
• Handle documentation policies and procedures.
• Perform Network VAPT, Hardening review of network and server devices.
• Security Incident Management, Client security specifications compliance review.
• Knowledge of security testing methodologies, security metrics, and risk assessment.
• Understanding of Network, Server, database configuration review and ASV Scan.
Technical skills:
•• ISO 27001 :2013 LA Preferred.
• Experience in Audits and Assessments preferably covering ISO 27001, SOC 2 Type 2, GDPR, Client Audit and Privacy Regulations (GDPR).
• Experience in identifying and remediating threat & vulnerabilities.
• Experience in IT Security (DLP, Web Filtering, Anti-Virus), VAPT Tools (like Nesus etc.), Vulnerability, Risk, Privacy Assessment.
Competencies:
• Excellent English communication skill (oral & written) is mandatory.
• Demonstrated critical thinking, situational analysis and problem-solving skills, and mindset.
• Ability to work independently and conduct self-research.
• Good inter-personnel skills, highly self-motivated, willing to learn and do more.