Forest Essentials
Website:
forestessentialsindia.com
Job details:
About Forest Essentials
Forest Essentials is India’s leading luxury Ayurvedic brand, redefining skincare, wellness, and beauty through authentic Ayurvedic formulations combined with a modern luxury experience. With a rapidly expanding retail, ecommerce, and digital ecosystem, cybersecurity and technology governance play a critical role in protecting customer trust, business continuity, and digital transformation initiatives.
Roles and Responsibilities
.• Execute and strengthen enterprise cybersecurity governance frameworks and IT controls.
• Conduct cyber risk assessments, gap assessments, vulnerability reviews, and remediation tracking.
• Manage and operate ITGCs, ITACs, IPE controls, and cybersecurity compliance processes.
• Support SOX compliance activities including walkthroughs, documentation review, testing, evidence tracking, andaudit coordination.
• Support ecommerce, POS, ERP, and digital ecosystem security initiatives.
• Conduct third-party/vendor security assessments and risk reviews.
• Maintain cybersecurity policies, SOPs, and control procedures.
• Drive process consistency and continuous improvement initiatives.
• Partner with technology teams to embed secure development and DevSecOps practices.
Required Skills & Experience
• 5–10 years of experience in Cyber Security, IT Risk, IT Controls, Technology GRC, or Information Security.
• Hands-on experience with SOX, ITGC, risk assessments, audit coordination, and compliance management.
• Familiarity with ISO 27001, SOC1/SOC2, PCI-DSS, DPDP Act, and cybersecurity frameworks.
• Understanding of cloud security, IAM, SIEM tools, endpoint security, and DevSecOps.
• Experience in retail, ecommerce, FMCG, or consumer businesses preferred.
Behavioral Competencies
• Strong execution focus with high ownership and accountability.
• Ability to manage high-stakes matters while maintaining confidentiality.
• Excellent communication and stakeholder management skills.
• Strong analytical and problem-solving abilities.
• Adaptability and comfort working in fast-paced environments.
Education & Certifications
• Bachelor’s degree in Computer Science, Information Technology, or related field.
• Preferred certifications: CISA, CISSP, CRISC, CISM, ISO 27001 Lead Auditor/Implementer.
Click on Apply to know more.