Managing Director at Corporate Search & Placements Pvt. Ltd.
Views:905 Applications:43 Rec. Actions:Recruiter Actions:2
Senior Manager - Information Technology & Security - General Insurance (6-8 yrs)
We have been retained by a professionally managed General Insurance Company with an international affiliation to identify a Senior Manager - IT (Information & Security) to be based at Mumbai.
- Develop, implement and monitor a strategic, comprehensive information security and IT risk management program.
- Develop and enhance an information security management framework.
- Provide leadership to the company's information security.
- Assist with the overall business technology planning.
- Provide current knowledge and future vision of technology and systems.
- Develop plans to safeguard the information assets against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
- Communicate risks and recommendations to mitigate risks to the senior administration by communicating in non-technical, cost/benefit terms and in a format relevant to senior administrators so decisions can be made to ensure the security of information systems and information entrusted to the Company.
- Direct and approve the design of security systems. Ensure that disaster recovery and business continuity plans are in place and tested.
- Review and approve security policies, controls and cyber incident response planning, approve identity and access policies.
- Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.
- Govern, manage and monitor information and Cyber Security Policy, Cyber Crisis Management Plan and respective security controls framework to protect the company's information assets and digital technology systems and effectively mitigate significant risks.
- Maintain a current understanding of the IT threat landscape for the industry. Ensure compliance with the changing laws and applicable regulations.
- Keep necessary interactions with Cert-In, IRDA and any other such Information and Cyber Security Organizations and Regulatory Organizations.
- Constantly update the cyber security strategy to leverage new technology and threat information. Make sure that cyber security policies and procedures are communicated to all personnel and that compliance is enforced.
- Keep abreast of developing security threats, and helping the senior management understand potential security problems that might arise from acquisitions or other big business moves.
- Keep updated with the latest security best practices, new threats and vulnerabilities and helping to disseminate this information within the company.
- Plan and establish organization-wide Information security Management System in accordance with ISO 27001 Standard, directions.
- Prepare information security audit report along with recommendations for improving information security.
- Strong Technical Skills relevant to network, cyber and internet security.
- Experience in Information Security Strategy planning, defining Information Security framework, Security Policy planning.
- Should have positive attitude and be self-motivated.
- Good managerial skills to lead a team.
- Good Vendor Management skills.
- Highly developed analytical, problem-solving, and consulting skills.
- Strong communication, influencing, and negotiation skills.
- Strategic thinker, keeping big picture in mind while ensuring execution excellence.
Ideal candidates should have a degree in B.E. / B. Tech, with 6 to 8 years of relevant experience.