Information security analyst

Posted: Jan. 14, 2022, 10:43 a.m. - Full Time - Mumbai

Role: Information security analyst Experience Level: 3 to 5 years

Responsibilities: * Manage with support and on-going maintenance of ISMS. * Should have knowledge of ISO 27001/SOC 2/HiTRUST.
* Manage with tracking and investigating information security incidents. * Perform project audits as per the defined methodology * Deciding the most relevant and applicable metrics for measuring security effectiveness and deciding on the requisite algorithms for their quantification * Liaison with external/internal ethical hacking / penetration testing teams * Prepare security effectiveness reports for customer / management * Follow up on closure of these gaps and escalate when necessary * Advise and consult with internal team and customers on risk assessment, threat modelling and fixing vulnerabilities * Create Security Knowledge-base for the team * Should be familiar with the best practices of OWASP, SANS Institute, ISACA, GAO, FISCAM, NSA, NIST, Internet Engineering Task Force (IETF) * Capability to develop a framework to test compliance of applications / systems. * Stay up-to-date on information technology trends and security standards

Requirement: B.Tech/B.E. in Computers, B.Sc in Computers, MBA 3 to 5 years’ experience in information security role ISO27001 LA / LI certification would be an added advantage Some understanding of GCP, AWS and Azure cloud platforms Basic information security principles or data privacy understanding