General Manager - IT - Head Security - Telecom

General Manager - IT (Head Security) for a Telecom company

Role : General Manager - IT ( Head Security)

Function : Information Technology - Security Operations

Location : Mumbai / Hyderabad

Reports to : CIO (Chief Information Officer)

Reportees : (1)Head - Risk & Compliance (2)TM - Security Ops

Preferred Industries : Telecom, IT, Banking.

Salary : Up to 45 Lakhs

CTC : Experience: 18-20 years;

Education : BE / Post Graduation

Job Description :

- Responsible for articulating and enforcing the Information Security Management System (ISMS) covering policies & procedures to protect organization's information assets, co-ordinate the information security related issues / implementation within company as well as within relevant external business partners.

- Develop Comprehensive Information Security (IS) and Data Privacy strategy, governance & planning

- Implement process for periodic review of the strategy so as to ensure its relevance and applicable at all the times.

- Representing Information Security requirements to all business as a subject matter expert ; Design, review and update Information Security Policies, Procedures, standards & Guidelines

- Engage with the senior management to identify IS risks and ensure that they are understood, and appropriate controls are built to support the Business in meeting its objectives without compromising on risk.

- Ensure adherence to defined IS Policy

- Cyber Security incident investigations

- Monitoring and Reviewing Security Health Index to check the effectiveness of Information Security Program

- Development of appropriate training & education programs/communication plans for employees and extended partners and ensuring their delivery

KRAs (Key Result Areas) :

- Considerable knowledge of telecom industry program policies, procedures, regulations and laws

- Should have industry certifications like ISO 27001 Lead Auditor, CISA, CISSP, CISM certifications, Cyber LAW, Privacy Law and Regulations etc.

- Engineer / MCA with formal certification like MCSE, CCNA etc.

- Considerable skill in effective verbal and written communications, including active listening skills and skill in presenting findings and recommendations

- Considerable negotiating & problem resolving skills

- Skill in collecting and analyzing complex data, evaluating information and systems, and drawing logical conclusions

- Ability to establish and maintain harmonious working relationships with co-workers, staff and external contacts, and to work effectively in a professional team environment.

Certifications desirable : CISA, ITIL V4, ISO 27001 LA, ISO 22301 LA

Experience with IT Governance frameworks such as COBIT, ITIL and ISO 2700x

Knowledge of COSO ERM Framework, ISO 31000, PCI-DSS, GDPR, Information Security of Telecom Domain