'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Information Security Analyst
Gurgaon/GurugramPosition Description :
Business Division : Corporate
Department : IT
Location : Gurgaon
Position Title : Information Security Analyst
Level : J1/J2
Reporting to (Title) : DGM - Info Sec
Position Purpose :
- The position is responsible for monitoring & responding to security alerts, maintaining security solutions including AV, DLP, CyberArk, VA etc. and day-to-day security operations.
- This role is also responsible for analyzing trends and changes in threat and compliance environment with respect to organizational risk; perform risk and compliance self-assessments; develop & execute plans for compliance and mitigation of risk; develop information security governance, including organizational policies, procedures, standards, baselines and guidelines with respect to information security.
Strategic Responsibilities :
- Perform risk assessments to identify gaps, assess the effectiveness of existing controls, and recommend remedial action.
- Assess emerging threats and recommend appropriate action actions to ensure data security.
- Proactively research and stay up to date with the latest security issues.
Operational Responsibilities :
- Monitor and manage security alerts from key information security dashboards.
- Assess the security impact of security alerts and traffic anomalies to identify malicious actions.
- Analyze security breaches to determine their root cause and prepare RCA.
- Coordinate remediation activities with IT operations teams.
- Responsible for implementation, administration and support of enterprise security solutions.
- Assist with the development of security architecture and security policies, process and procedures.
- Facilitate scoping, testing and evidence gathering around regulatory and internal audit cycles.
- Review non conformances as identified in internal / external audits and ensure implementation of action plans for closure of gaps identified.
- Monitors and conducts routine audits on compliance to all information security procedures and policies, and ensures consistency of internal controls across departments.
- Provide MIS reports to management on key performance metrics for the function as per specified timelines
Financial Responsibilities :
People Responsibilities :
- Leads professional development of self through internal / external trainings.
Education Qualification :
- Degree in Information Technology or Computer Science or Network / Telecommunications Engineer-B. Tech., B.E, MCA, M.Sc. IT.
- Professional Security Qualifications preferred but not mandatory (like CEH, GCIH, CISA, CISM, CISSP).
Work Experience :
- 5-8 years of experience in Information Security or Cyber Security Industries.
Industry to be hired from : Any
Functional Competencies :
- Thorough knowledge/hands-on of security solutions (AV, EDR, DLP, VA tools, SIEM, IDPS, Firewalls, Web-Proxy etc.).
- Good understanding of Information security related standards and best practices (these include like ISO 27001, 27002, 22301, NIST, COBIT 5.0, PDPA, PCI-DSS, Cyber-crime act etc.).
- Good understanding of Information Security concepts (Confidentiality, Integrity, and Availability) and technologies (PKI, VPN, SSL, TLS etc.).
- Working Knowledge of IT disciplines such as data processing, hardware platforms, enterprise software applications, database administration and outsourced system.
- Understanding of HTTP/HTTPS and web application architectures around secure transmission and storage of data over public networks.
Behavioral Competencies :
- System and Process Adherence
- Drive for results
Interaction Complexity and Team Work :
- Interaction - Frequency - Purpose of Interaction
Internal :
IT teams (Site Infra/ IT Operations / Projects etc.) Finance, SCM,HR, R&D,IT, Legal and other departments :
- Planning of operations related to IT Security, MIS/reporting, IT Application and system related issues, Audits
Auditors, Vendors Government authorities, External Agencies and Knowledge Partners, Consultants, Trainers :
- For Audits, for procuring materials and negotiating prices
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}