1.  ISO 27001:

a. Conduct Gap Analysis for ISO 270001/ISMS implementation

b. Conduct Risk Assessments and suggest Mitigation plans/Controls

c. Conduct /Assist in VAPT and assist in closure of Vulnerabilities

d. Prepare of Policies and Processes

e. Prepare Training Plan

f. Train the Stakeholders

g. Conduct Mock Audits

h. Assist in ISO 27001, final Audit

Roles and Responsibilities:

1. Assist in the implementation of the Information Security Management System based on the ISO/IEC 27000 series standards, including preparation for certification against ISO/IEC 27001.

2. Perform gap analysis of information security standards such as ISO 27001:2013 and create compliance reports for information security standards such as ISO 27001:2013 and other requirements (IT Act/CII)

3. Leads the preparation and the implementation of necessary: Information security policies, standards, procedures and guidelines, in discussion with the departments CISO/ Information Security Committee, to get appropriate approvals and feedback, for implementation.

4. Manages and leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations ((IT Act, NCIIPC guidelines, Critical Information Infrastructure controls etc)

5. Support department and help manage implementation of information security management system.

6. Conduct Information security awareness, training and educational activities to stakeholders.

7. Manages information security risk assessments and controls selection activities

8. Liaison with stakeholders and offers strategic direction to related governance functions (such as Risk Management, IT, HR, Legal and Compliance)

9. Liaison with senior and middle managers throughout the project organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies

10. Present reports and recommendations to CISO on information security and related issues

11. Work independently under the general direction of the CISO to ensure timely and accurate completion of information security internal audit objectives and perform the requisite preparation

12. Manage Third Party Security Assessment Program to minimize risk associated with business partners and vendors.

13. Perform testing of internal controls specified in Information Security Policies and Perform internal audit reviews to assess the effectiveness of current information security controls

14. Ensure timely and effective corrective actions are taken to correct deficiencies and provide status reporting.

15. Support the Information Security program including development, collection, assessment, and reporting of metrics

16. Recommend security policy changes and enhancements as needed and assist CISO in implementation

17. Conduct Mock ISO Audits and, Report on departments’ preparedness for final audit and certification

18. Assist CISO in ISO 27001- Audit and certification

Qualifications:

1. Should have Bachelors/Master’s degree and hold professional certification viz., CISA, CISSP/ CISM, CRISC etc., ISO 27000 – Implementer/Lead Auditor etc,

2. Should have led at least 2 implementation of ISMS and one implementation as Lead Auditor. Banking industry experience will be a plus.

3. Preferably have experience/led 1 implementation of BCMS

4. Broad-based IT experience with technical knowledge of Networks, Hardware, Storage, Operating systems, and Applications, Business Impact Analysis, RTO/RPO, Communication Plan, ITDR Drills, Contingency Plans etc

5. Up-to-date understanding of emerging trends in information security and apply new techniques and trends, in-line with overall information security objectives and risk tolerance

6. Good writing skills for Policy & Procedures, BCP documentation

7. IS Awareness, Training and Assessment: Preparing Training plans and conducting relevant Trainings for stakeholders

8. Experience in working on Cyber Security Projects of Government/ Industry.

نوکری کی تفصیلات

کل عہدے:
1 اشاعت
نوکری کی شفٹ:
پہلا پہر
نوکری کی قسم:
نوکری کا مقام:
جنس:
کوئی ترجیح نہیں
کم از کم تعلیم:
بیچلرز
کیریئر کی سطح:
تجربہ کار پیشہ ور
تجربہ:
3 سال - 6 سال
اس سے پہلے درخواست دیجیۓ:
مئی ۳۰, ۲۰۱۹
تاریخِ اِشاعت:
اپریل ۲۹, ۲۰۱۹

Kualitatem Pvt Ltd

انفارمیشن ٹیکنالوجی · 51-100 ملازمین - لاہور

Kualitatem is a leading Independent Software Quality Assurance (QA) and Testing company, providing services across the globe. Kualitatem's award winning team inspires their clients to outsource their testing needs to the multidimensional and experienced pool of professionals for in depth analysis. Kualitatem provides experience and in-depth knowledge of known problems and dilemmas that nearly all software development agencies face in their QA processes. Kualitatem is on the look-out for individuals with the highest level of energy and passion. Our culture values integrity, intellect and inspiration. Every team member is encouraged to create meaning out of his presence as a part of team. Learn and Teach is our slogan. If you are energetic and willing to develop a career in the field of software Testing and QA, Kualitatem may have a place for you.

آپ کو کس حوالے سے برتری حاصل ہے؟

اپنے بارے میں ہماری پیشہ ورانہ رائے اور تقابلی جائزہ حاصل کیجیۓ
اپنی سی وی کو موءثر بنانے کیلئے ہماری ماہرانہ مشاورتی ٹیم سے رابطہ کریں
روزی پریمیئم کو آزمائیں
I found a job on Rozee!