Job Description:Minimum 8 years of experience in conducting cyber risk assessments in domains such as enterprise security, access management, VAPT, SOC, Endpoint Security, Cloud Security (IaaS, SaaS, PaaS), Data Privacy, Data Leakage, Network and Communication Security, SDLC, AI risks etc.Should have working knowledge of security standards such as ISO 27001, NIST, COBIT, PCIDSS and other relevant standards. Should have worked in creating policies and procedures across cyber and data privacy. Should also have working knowledge of managing security awareness and training programs for the organization.Should have experience in creating and managing risk registers, evaluating risk and its methodologies, articulating risk and communicating.Should also have exposure to working in identifying and handling supplier risks related to cybersecurity.Working knowledge of Risk Based Standard like ISO 31000, COBIT is preferred.Should also have conceptual knowledge of advance cyber solutions such as ZTNA, CASB, DLP, Micro segmentation, CNAPP. LLM. Secure AI etc.Should have worked in IT/ ITeS environment and have led small to mid-size teams preferably in a GRC role.Should also have knowledge about cloud security, secure AITechnical certifications can includea. CISA/ CISM/CRISC or equivalent (Desired)
