Visionyle Solutions
Information Security Engineer - CISA/CISSP
Job Location
mumbai, India
Job Description
Role- Information Security Location- Mumbai (Andheri East) Exp- 4 years Notice period-Immediate to 30 days Interested candidates can share your updated resume to Description - Third-party/supplier security risk assessment - Interpreting security assurance reports (SOC2, pen test reports, security policies/ processes/ standards) - Reviewing security requirements in contracts - Understanding outsourced solutions and associated information classification - Assessing supplier security controls (based on ISO27001/2 standards) - Identifying and documenting security risks - Suggesting recommendations to address identified security risks - Potentially performing information classification (AIC assessment) Certifications : - Security certifications such as: - SO27001 auditor/implementation - CISSP, CRISC, CISM, CISA Roles and Responsibilities : - Conduct thorough security assessments of third-party vendors and suppliers to ensure they meet the required security standards. - Evaluate third-party security controls and practices based on frameworks like ISO27001/2. - Review and interpret security assurance documents, including SOC2 reports, penetration test reports, and vendor security policies. - Identify security gaps, risks, and areas of non-compliance from these reports. - Identify potential security risks posed by third-party vendors and suppliers. - Document these risks clearly and concisely for reporting to relevant stakeholders. - Provide practical recommendations to address and mitigate identified security risks. - Collaborate with internal teams and vendors to ensure that corrective actions are implemented effectively. (ref:hirist.tech)
Location: mumbai, IN
Posted Date: 11/26/2024
Location: mumbai, IN
Posted Date: 11/26/2024
Contact Information
Contact | Human Resources Visionyle Solutions |
---|