Team Lead - IT Governance/Risk & Compliance

Governance , Risk and Compliance Team Lead

Experience :

- Minimum 2 years relevant experience in Information Security and Risk Management

1.2 Certification :

- Certified in ISO 27001 LA

- Certified in ISO 22301 LA

Responsibilities :

- Handling ISO 27001:2013 certification audits (Internal and External)

- Implement Information security guidelines formulated by security steering committee

- Front end all the internal and external audits for the organization

- Ensure process Quality for all the processes as per ISO 9001 standards

- Risk Management - evaluate and eliminate all the possible threats, risks in the organization

- Managing Risk assessment for the organization effectively

- Provide security and privacy consultations as and when required by the organization

- Implementing ISO 22301, developing BCMS framework and certification.

Audits :

- Conducting periodic Quality Management, Information Security & BCMS audits for the organization.

- Ensuring effectiveness of all controls identified and listed as per ISO standards.

- Facilitating the external audits for the organization.

Trainings :

- Conducting ISO 9001, 27001 & 22301 trainings for the employees.

- Create security, data privacy and protection awareness among employees.

Documents/Reports :

- Preparation of Internal and External audit report after the respective audits.

- Maintain and track security and data privacy policies and procedures.

- Designing, implementing and maintaining all the process related documents.

- Collation & tracking of incident reports.

- Develop Security incident handling procedures.

- Implement new tools for security analysis.

- Review security and privacy policies and procedure for effectively executing the above

- Conducting tests relating to ISO 22301 (TT, BCM Drills etc.) and bringing out improvement at weak

- Documentation for ISO 9001, ISO 27001 & ISO 22301