Role: IT Risk Manager

Roles & Responsibilities:

- Implementation of improved processes to reduce IT CAPEX and OPEX costs

- Implement IT Asset management processes.

- Manage and Track IT Assets across Stores, Warehouses and offices.

- Minimize risk by developing policies that encourage secure working and protect data.

- Provide employees and managers different levels of access to company data based on seniority and job function.

- Providing training for employees, explaining security risks and demonstrating good practices, such as using strong passwords and protecting data when they use mobile devices outside the office.

- Implement Information Security across all Store and Office locations as per ABG IS Policy / standards.

- Organize/Conduct security awareness programs with help of Zonal Training Team

- Assess the organizations security measures, such as firewalls, anti-virus, DLP, NAC, Fpac software, Patch Management and passwords, to identify any weak points that might make information systems vulnerable to attack.

- Carry out simulated attacks to test the efficiency of security measures.

- Prioritize security coverage to ensure that strategically important data, such as commercial information or Design Data, receives the highest levels of protection.

- To design and implement information security systems to protect computer networks from cyber-attacks, and help set and maintain security standards

- Document the exceptions with appropriate approvals wherever vulnerability cannot be addressed and then mitigation procedures are addressed and Implement IRM (Microsoft EMS) and make users use the tool to protect information

- Set up procedures and automated processes to monitor the status of computers and networks. If the monitoring system detects unusual patterns of behavior, managers must respond quickly to determine the cause and deal with any threat.

- Analyze reports generated by the monitoring system to identify trends that might indicate a future risk.

- Data Backup Compliance

- Monitor backup of all critical data

- Perform information security risk assessments and serves as an internal auditor for security issues

- Provide necessary information to derive decisions about risk acceptance and risk mitigation and identify best practices to mitigate information security risks.

- ITGC, ISO & PCI DSS Audit - Ensure all existing non-conformities and observations are covered and mitigated and Ensure readiness for the yearly audit.

This job opening was posted long time back. It may not be active. Nor was it removed by the recruiter. Please use your discretion.