Information security analyst
Posted: Jan. 14, 2022, 10:43 a.m. - Full Time - MumbaiRole: Information security analyst Experience Level: 3 to 5 years
Responsibilities:
* Manage with support and on-going maintenance of ISMS.
* Should have knowledge of ISO 27001/SOC 2/HiTRUST.
* Manage with tracking and investigating information security incidents.
* Perform project audits as per the defined methodology
* Deciding the most relevant and applicable metrics for measuring security effectiveness and deciding on the requisite algorithms for their quantification
* Liaison with external/internal ethical hacking / penetration testing teams
* Prepare security effectiveness reports for customer / management
* Follow up on closure of these gaps and escalate when necessary
* Advise and consult with internal team and customers on risk assessment, threat modelling and fixing vulnerabilities
* Create Security Knowledge-base for the team
* Should be familiar with the best practices of OWASP, SANS Institute, ISACA, GAO, FISCAM, NSA, NIST, Internet Engineering Task Force (IETF)
* Capability to develop a framework to test compliance of applications / systems.
* Stay up-to-date on information technology trends and security standards
Requirement: B.Tech/B.E. in Computers, B.Sc in Computers, MBA 3 to 5 years’ experience in information security role ISO27001 LA / LI certification would be an added advantage Some understanding of GCP, AWS and Azure cloud platforms Basic information security principles or data privacy understanding