Chief Officer - Information Data Security - BFSI

POSITION : CHIEF DATA OFFICER (Information Data Security)

EXPERIENCE : 12 - 15 YRS

- Support the supervision of staff managers, engineers, vendors, auditors, and other persons tasked with maintaining information security and supporting our practice.

- Assist in the coordination and oversight of day to day activities of the information data security function.

- Investigate network intrusions and other cyber security breaches to determine the cause and extent of the breach

- Participate in technical meetings and working groups to address issues related to malware security, vulnerabilities, and issues of cyber security and preparedness

- Perform assessments of security programs and make strategic recommendations and priority recommendations related to improvements

- Develop and deliver papers and presentations related to infrastructure security best practice

- Prepare, write, and present reports and briefings related to security engagements

- Advise on response to government notices and investigations related to cyber security and Privacy

- Develop incident response plans and procedures tailored to specific needs

- Support the development and implementation of security-oriented policies, procedures, and operating practices

- Support the continuous planning, development and implementation of a secure global infrastructure designed to protect against all matter of threat to firm resources and data

- Interface with firm clients to manage compliance with Outside Counsel Guidelines and regulatory requirements. Regulatory compliance focuses on Insider Trading.

- Manage relationships with third party providers of services to the firm for negotiation of contract language and evaluation of third party risk related to privacy and security practices

- Support the company's information security and privacy education program and ensure yearly reeducation is completed by all staff

- Oversee the development and implementation of hardening procedures for the firm's servers, workstation (desktops and laptops) and mobile devices

- Maintain significant knowledge of Cyber threat actors, attack methodologies and mitigation/remediation methods

- Additional duties as assigned.

QUALIFICATIONS

- BTech & MBA from top B Schools with 12+ years of experience in information security positions, with 5+ years- experience in a role providing information security or information risk management consulting services preferred

- 5+ years of experience in a professional services organization (such as a law firm, accounting practice, or similar data-intensive operation) preferred

- Experience overseeing an ISO 27001 certification program, with certification as an ISO 27001

- Significant experience managing incident response, computer crime, or forensics investigation programs required

- Significant knowledge of cyber threat actors and thereby attack methodologies are required

- Significant knowledge of information security technologies, networking and network architecture

- Strong written and oral communication skills

- Proven ability to manage competing priorities and work under pressure

- Current information security certification as a GIAC, CISSP, CISM, CIPP or CFE preferred.

- A global perspective on privacy, security, and data protection issues and trends.