CISO
- Experience: 15 - 20 Years
- Location: Indore
Requisition Description
A skilled leader with 12-18 years of experience, with strong understanding of information technology and security having one or more of security certifications like CISSP, CISM, CISA.Well versed with common information security management frameworks, such as ISO/IEC 27001 and NIST.Excellent written and verbal communication skills, innovative thinking, and leadership abilities.Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.Work directly with business units/departments to facilitate risk assessment and risk management processes.Establish and maintain a corporate-wide information security management program to ensure that information assets are adequately protected.Provide leadership to the enterprises information security organization and partner with business stakeholders to raise awareness of risk management concerns.Design, implement and maintain security policies and procedures to protect enterprise assets, systems, and communications. Identify security objectives and metrics, to develop secure business and communication practices and ensure that the company is in regulatory compliance.Respond to data breaches and other security incidences.Anticipate, assess, and actively manage new and emerging threats.Work with different departments to align security initiatives with broader business objectives.Work with IT for identification, purchase, and implementation of security products.Ensure that periodic employee security awareness trainings are being conducted.
Roles and Responsibilities A skilled leader with 12-18 years of experience, with strong understanding of information technology and security having one or more of security certifications like CISSP, CISM, CISA.Well versed with common information security management frameworks, such as ISO/IEC 27001 and NIST.Excellent written and verbal communication skills, innovative thinking, and leadership abilities.Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.Work directly with business units/departments to facilitate risk assessment and risk management processes.Establish and maintain a corporate-wide information security management program to ensure that information assets are adequately protected.Provide leadership to the enterprises information security organization and partner with business stakeholders to raise awareness of risk management concerns.Design, implement and maintain security policies and procedures to protect enterprise assets, systems, and communications. Identify security objectives and metrics, to develop secure business and communication practices and ensure that the company is in regulatory compliance.Respond to data breaches and other security incidences.Anticipate, assess, and actively manage new and emerging threats.Work with different departments to align security initiatives with broader business objectives.Work with IT for identification, purchase, and implementation of security products.Ensure that periodic employee security awareness trainings are being conducted.
