Information Securities

Department IT Department
Designation Manager – Information Security Engineer
Year of Experience 10 +
Education Qualification Post Graduate /MSC-Science/MCA prior experience of Information Security/ Cyber security certification in CEH/CLPTP/CISSP/CISM would be preferred
Package   At per Industry
Industry   Banking/Financial Service/NBFC/ Broking
Location Mumbai  
Position Type ON-ROLL
Position Reports to    

Responsibilities:

  • Develop/Review /Finetune  Information Security Plans and Policies

Information Security Engineers help plan and carry out an organization’s information security strategy. They develop a set of security standards and best practices for the organization, and recommend security enhancements to management as needed & help to comply with Regulatory guidelines.  They develop strategies to respond to and recover from a security breach. Information Security Engineers are also responsible for educating the workforce on information security through training and building awareness

  • Implement Protections

Implement data classification at organization level to identify Private/ Public & Confidential Information. Information Security Engineers install and use software, such as firewalls and data encryption programs, to protect organizations’ sensitive information. They also assist computer users with installation or processing of new security products and procedures.

Drive and implement automation for controls to reduce all manual verification steps

  • Test for Vulnerabilities

An Information Security Engineer conducts periodic scans of networks to find any vulnerability. They also conduct penetration testing in software developments / Integrations, in which they

simulate an attack on the system to highlight or find any weaknesses that might be exploited by a malicious party.

  • Monitor for Security Breaches

Information Security Engineers must constantly monitor their organization’s networks and systems for security breaches or intrusions. They install software that helps to notify them of intrusions, and watch out for irregular system behaviour.

  • Investigate Security Breaches

If a breach has occurred, the Information Security Engineer leads incident response activities to minimize the impact. Afterwards, they lead a technical and forensic investigation into how the breach happened and the extent of the damage. They prepare reports of their findings to be reported to management.

 

Skill/Knowledge

  • Direct experience with anti-virus software, intrusion detection, firewalls and content filtering
  • Knowledge of risk assessment tools, technologies and methods
  • Experience designing secure networks, systems and application architectures
  • Knowledge of disaster recovery, computer forensic tools, technologies and methods
  • Experience planning, researching and developing security policies, standards and procedures
  • Professional experience in a system administration role supporting multiple platforms and applications
  • Ability to communicate network security issues to peers and management
  • Ability to read and use the results of mobile code, malicious code, and anti-virus software
  • Self-motivated, with high energy and an engaging level of enthusiasm
  • Exceptional verbal communication and presentation skills