- Knowledge of relevant legislative or regulatory requirements such as IT Act and associated Rules and competence/exposure in the field of information security;
- Good communication and writing skills.
Roles and responsibilities may include but not limited to the following:
- Seek top management support and direction for implementing information security measures in the organization.
- Identify information security goals and objectives consistent with organization business need/objectives
- Define the scope and boundaries of the information security program.
- Understand legal and regulatory requirement.
- Define information security implementation strategies.
- Estimate budget and resources required.
- Plan and establish organization-wide Information security Management System (ISMS) in accordance with ISO/IEC 27001 Standard, directions and advice of RBI and other relevant security standards.
- Define risk management framework.
- Define information security measurement metrics and other key performance indicators.
- Get approval for information security plan, budget and resources from top management.
Didn’t find the job appropriate? Report this Job