Job Description :
- Carry out all information security risk assessment.
- Carry out Privacy risk and impact assessment for client operations and technology infrastructure
- Conducting operations audit based on Information security and privacy principles.
- Conducting review of contractual contracts, privacy contracts/exhibits/privacy agreements
- Supporting compliance certification (ISO, PCI, SSAE) and client audits
- Ensure various information security, privacy regulatory requirements/client's data privacy requirements are effectively addressed.
- Advise business unit leaders and risk management leaders in issues related to information security.
- Handling information security incidents, data breaches investigations
- Assist Risk management functional leaders in overseeing compliance activities relating to information security.
- Creation and maintenance of risk assessment trackers and keeping them current
- Creation and maintenance of up-to-date inventory of sensitive information profiling for client operations
- Ensure that contract arrangements are in place and being complied with. Obtain necessary evidence for the same. Conducting necessary due diligence on subcontractors/third party.
- Driving information security training and awareness to ensure employees are aware of their responsibilities.
- Experience on privacy regulations (HIPAA/HITECH, EU Privacy directive/DPA, GLBA, PIPEDA, Australia/New Zealand privacy laws/APP etc)
Diversity Initiatives
Inclusion Network: Shine Network
This is an inclusive business network for our LGBTQ+ community and it is all about breaking down barriers of difference and connecting people. Shine celebrates each person’s uniqueness, regardless of sexuality, race, gender, religion...........See More
Didn’t find the job appropriate? Report this Job