- Location
- Noida, Uttar Pradesh, India
- Job type
- Full-time
Required skills
- banking
- compliance
- end-to-end
- information security
- interpersonal skills
About the role
Website:
aksitservices.co.in
Job details:
Key Experience & Skills Required:
- Proven experience in the implementation of ISO 27001:2022 for clients, including gap assessments, risk treatment plans, and ISMS documentation.
- Hands-on experience in conducting risk assessments and information security audits onsite at client location (internal and external).
- Experience in comprehensive IS audits specifically within the Banking, Financial Services and Insurance(BFSI) sector.
- Strong background in developing, reviewing, and maintaining information security policies, procedures, and SOPs.
- Familiarity with industry-recognized cybersecurity standards and frameworks such as:
- NIST Cybersecurity Framework (CSF)
- ISO 27001: 2022 standard
- RBI CSF, ITGRC, Outsourcing services master directions
- IRDAI Cyber Security Guidelines
- SEBI CSCRF
- UIDAI Guidelines
- SOC 1 / SOC 2 Type 1/ Type 2
- Digital Personal Data Protection (DPDP) Rules
- Other relevant circulars, guidelines, and regulatory frameworks.
- Excellent communication, documentation, and interpersonal skills, with the ability to clearly convey technical information to stakeholders at all levels.
- Ability to manage multiple assignments independently while maintaining quality and timelines.
- Ability to prepare detailed Audit checklists and reports as per the scope mentioned for the project.
Mandatory Certification:
- ISO 27001 Lead Auditor certification(IRCA CQI Certified) for 2/3 years of experience.
- ISO and CISA certification(ISACA) for 5+ years of experience.
Key Responsibilities:
- Lead and manage end-to-end implementation of ISO 27001:2022, including scoping, risk assessments, and creation of ISMS documentation.
- Perform risk identification, assessment, and treatment in accordance with ISO 27001 and organizational context.
- Plan and conduct internal audits, external audit, and deliver IT security awareness and training sessions onsite at client location.
- Should have conduct audit based on Banking, Insurance, Aadhaar, SEBI Guidelines onsite at client location.
- Develop and maintain audit checklists, detailed audit reports, and corrective action plans.
- Design, review, and update information security policies, procedures, and process-related documentation in line with applicable standards and business requirements.
- Support ongoing maintenance and continuous improvement of the Information Security Management System (ISMS).
- Coordinate with stakeholders and clients to ensure timely and effective execution of audit and compliance tasks.
Click on Apply to know more.
This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.