Must-Have Skills: (ISO27001/ISMS related)
- Good knowledge of the ISO 27001:2013 standard and Experience in implementation of ISO 27001 standard.
- Hands-on experience to create policies, procedures, and guidelines that are relevant within the organizational Information security framework
- Expertise to frontend and take ownership of all internal and external audits for the organization
- Coordinate and follow-up with internal stakeholders to close all audit findings within the timeframe
- Ability to plan and conduct periodic internal audits as defined and client-specific assessments when required
- Good process documentation skills with the ability to conceptualize processes and convert these into well-written documents.
- Well versed Training and Facilitation skills to conduct security and compliance-related training and assessments within the organization
- Experience in the areas of Network Design, Infrastructure Audit, IT Security, Vulnerability Assessment, Risk Assessment, Web Applications Security Testing
- Knowledge on reporting IS Events, Security Incident Tracking, Evaluating IS weaknesses, Lessons Learnt from IS, Performing RCA and taking Corrective and Preventive Actions
Must-Have Skills: (SOC related)
- Good knowledge of IT infrastructure including multiple operating systems and basic system administration skills (Windows, Linux) is preferable.
- Good knowledge of client-server communication, firewalls, IDS IPS, Proxies, VPNs, and enterprise Anti-Virus products.
- Candidates with strong organizational and analytical skills.
- Proficient in event /offense analysis incident management.
Other Requirements
- 2 Years’ experience in Information Security and related functions such as IT audits and IT risk Management and SOC experience with SIEM tool (RSA Netwitness preferred).
- Certifications – ISO 270001 Lead Auditor (Mandatory)
- Good attitude and willingness to learn.
- Ability to work as a Team player and an Individual Contributor.
- Excellent oral and written communication skills.
- Participate in evaluating, recommending, implementing, and evaluating IT security of the new IT Infrastructure systems.
- Communicate effectively with customers, teammates, and management.
- Providing inputs on tuning and optimization of security systems Staying up-to-date with emerging security threats.