IT Security Specialist

Company: Banking
Role: IT Security Specialist
Designation: Manager/Senior Manager
Vertical: Information Technology
Experience: 8-10 yrs
Location: Mumbai, Churchgate
CTC: 15-18lpa

For the response / Applications please share your resume on recruiter@ametsu.in

 Job Profile

This role must be able to translate the IT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting.

This role requires an individual with a strong technical background, as well as an ability to work with the IT organization and business management to align priorities and plans with key business objectives. A key imperative of this role is to strike a balance of real-world risks with business drivers such as speed, agility, flexibility and performance.

Requirements and Qualifications

• A minimum of 8-10 years of IT experience, with at least 5-8 years in an information security role and at least 5 years in a supervisory capacity
• A bachelor’s degree in information systems or equivalent work experience; an M.B.A. or M.S. in information security is preferred.

The individual must have the following:

• Work with the IT Head and other stakeholders to develop a security program and security projects that address identified risks and business security requirements.
• Define metrics and reporting strategies that effectively communicate successes and progress of the security program.
• Streamline the Information Security related processes in the organization and improve its Information Security posture
• Coordinate, measure and report on the technical aspects of security management.
• Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
• Assist business owners and IT staff in understanding and responding to security audit failures reported by auditors.
• Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x
• Strong project management skills and experience in creating and managing project plans, including budgeting and resource allocation.
• Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies.
• An understanding of operating system internals and network protocols.
• Familiarity with the principles of cryptography and cryptanalysis.
• Experience in application technology security testing (white box, black box, code review, Simian Testing etc).
• Experience in system technology security testing (vulnerability scanning and penetration testing).