Chemplast Sanmar - Manager - Information Technology Security - CISSP/CISA

Description: IT Security Manager

Job Location: Karapakkam OMR, Chennai.

Key Responsibilities:

Compliance: To assist the IT Security Head in the following:

- Establish and maintain IT control environment and framework.

- Develop and maintain IT Policies.

- Communicate the IT control framework and IT objectives and direction.

- Ensuring legal, contractual, policy & regulatory requirements from an IT Security perspective are met across the Infrastructure landscape.

- Report, Monitor & review compliance of IT activities with IT policies, plans and procedures.

- Proactive review and update of existing IT policies, plans and procedures in response to compliance requirements and implementation of new IT Policies, plans & procedures.

- Enable IT reporting on regulatory requirements with similar output from other business functions.

Risk: To assist the IT Security Head in the following:

- Periodic monitoring and mitigate of risks associated with IT.

Security Management:

To assist the IT Security Head in the following:

- Review, maintain and update IT security plan.

- Review and conduct regular vulnerability assessments and close noticed gaps.

- Work with the Applications team in maintaining a high level of application and user security in-line with security policies.

- Work with the IT Infrastructure team to maintain a high level of IT Infrastructure and user security in-line with security policies.

Skill Requirements:

- Understanding on IT Security and compliance standards like ISO 27001, NIST Guidelines, CISSP security framework and risk management framework.

- Hands on Experience in doing information security audits and Risk assessments.

- Experience in implementing information security policies and procedures for the organization.

- Expertise in monitoring compliance with information security policies and procedures, while jointly working to solve the problems with the appropriate Domain Leads.

- Expertise in monitoring the defined internal control systems to ensure that appropriate access levels are maintained.

- Good understanding on disaster recovery and experience in driving DR Drills.

Qualifications: B.E / B.Tech

Desirable: CISSP /CISA / ISO27001 certification.

Experience:

Essential:

- Experience in IT Infra & IS Domains.

- Experience in creating IT security controls.

- At least 2 yrs experience in working in a Cloud environment.

- At least 3 year of work experience in a Manufacturing company.

Desirable:

- 1+ year of relevant experience as IT Security manager.

- Work Experience as Inf Security Auditor in at least 1 project.

- Experience in SAP environment would be an added advantage.

- ITIL certification