Designation - Head - Information Security & Governance
Location - Mumbai
Qualification: Graduate
Experience: 12 to 18 years
Key Responsibilities:
- Provide leadership, vision and direction to the applications organization to ensure it will contribute to the company achieving its goals.
- Work with CIO and other IT leaders to develop overall IT strategy in the context of business strategy and cybersecurity.
- Leverage influencing and negotiation skills across IT and the enterprise to enable cost-effective and innovative shared solutions in the achievement of business goals.
- Develop and implement security standards, processes and procedures, and guidelines for the enterprise.
- Work with the CIO to ensure and monitor security compliance with industry and government rules and regulations.
- Coordinate with technology and business groups to assess, implement, and monitor IT-related security risks/hazards.
- Understand the trade-offs required to manage the different levels of risk tolerance and risk exposure across the organization and balance this with risk investments.
- Report security performance against established security metrics.
- Develop and control the annual operating expenditure (opex) and capital expenditure (capex) budgets for Information Security to ensure that it's consistent with the overall strategic objectives of IT and the enterprise and is within plan.
- Direct the development of a sourcing strategy and provide executive oversight for strategic vendor and partner relationship management.
- Ensure security complies and meets all service level agreement requirements.
- Define, develop and manage a comprehensive and integrated landscape, based on best-practice processes, disciplines and related toolsets.
- Remain updated on new technologies and platforms - including artificial intelligence (AI) and cloud computing - and provide direction on what emerging technologies should be assimilated, integrated and introduced into the landscape.
- Manage information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation.
- Create an information security awareness program to ensure staff members across the organization understand the trade-off between risk and return
Didn’t find the job appropriate? Report this Job