Associate Vice President / Vice President – Information Security

Job Requirements & Required Qualifications & Experience

1. Conduct risk assessment of banking solutions/ applications, processes, operations, technologies and vendor assessments.
2. Evaluate the adequacy and effectiveness of policies, procedures, processes, and internal controls.
3. Evaluate if policies, procedures and processes are in line with the regulatory requirements and standards like ISO 27001, PCI DSS, NIST etc.
4. Assess the technical security controls and identify the associated Information Security risks & recommended measures.
5. Responsible for security compliance to the regulatory requirements and industry standards.
6. Assess the exception requests in the security configurations for various platforms and application vulnerabilities and respond with the.
7. Assess the adequacy of Cloud Security controls for cloud based solutions.
8. Monitor and evaluate the regulatory compliance requirements for cyber security and act as SPOC for all the applicable information security regulatory requirements.
9. Coordinate with various internal stake holders to ensure the regulatory directives and understand actions taken to achieve compliance.
10. Monitor, track and coordinate with various stakeholders on open actionable (issues, non-compliances etc.)
11. Responsible for disseminating security policies and provide security awareness to all users via Workshops, flyers, e-learning portal etc.
12. Take on additional special projects and responsibilities as needed.

Qualification and Experience

* Minimum Bachelor degree in engineering (Preferably Information Security, IT or Computer Science technology) / MCA
* Certifications like ISO 27001 LA / Implementer, CISA, CISM, CISSP, PCI DSS, CSCP are preferred.
* 10-12 years of relevant working experience.
* Worked as a senior Information Security Governance role at strategic level for a Financial institution/Bank. Knowledge of architecting and delivering security solutions within financial institution/Bank is preferred.
* Sound knowledge of Cyber Security frameworks & regulatory guidelines preferably in banking environment. Knowledge on IT act and law would be an added advantage.
* Should have in depth knowledge and rich experience of Information Security assessments, Vendor technology risk reviews, Cloud hosting technologies and understanding of associated security management controls & Compliance essentials.
* Experience in working with various technologies.
* Experience working in highly regulated environments.
* Strong technical, analytical, and interpersonal skills.
* Superior attention to detail with excellent written and verbal communication skills.
* Shall have capability and passion to do research and look for innovation opportunities

Risk Category: 

Other Services of Interest

  • Celebrating 1 Year of GDPR - Webinars from Riskpro

    GDPR turns ONE on 25 May 2019. On this Anniversary, lets explore what the last 12 months meant for global companies as it relates to Data Protection and Privacy. Riskpro India has organised 6 GDPR...
  • Procurement Fraud - Riskpro can help

    If you suspect procurement fraud, do contact Riskpro India and we can help to unearth the suspicious activity. Following are some of the ways in which we can help. 1. Review of onboarding...
  • GDPR - Data Privacy Trainings - Six Webinar on GDPR Anniversary - Riskpro

    GDPR turns ONE on 25 May 2019. On this Anniversary, lets explore what the last 12 months meant for global companies as it relates to Data Protection and Privacy. Riskpro India has organised 6 GDPR...
  • HIPAA Awareness Training (Mandatory) - Riskpro India

    EVENT OVERVIEW: HIPAA stands for the Health Insurance Portability and Accountability Act and is a US regulation that deals with security measures for protecting patient’s medical records. Employees...
  • SEBI's Insider Trading Amendment - Free Webinar by Riskpro India

    Another important compliance topic that kicks off today. SEBI Amendment to Insider Trading Regulations. Join us for an hour to learn the important changes and how to deal with these. Register -...
  • Sox Training

    Our sox training covers the following points. 1. What is SOX? 2. The Act and its Sponsorors. 3. The background for bringing in this act. 4. Major Sections in the Act 5. Section 404 overview 6...
  • GDPR Countdown

    Riskpro is working hard so that clients can GDPR deadline as the clock ticks away.
  • EU-US Privacy Shield for Data Transfers

    Come GDPR (General Data Protection Act) and EU-US PRivacy shield will assume more importance. Privacy Shield Overview The Privacy Shield program, which is administered by the International Trade...
  • Reduce your GDPR implementation Costs - Hire GDPR Experts in India

    Reduce cost for GDPR Compliance - Remote Consulting from India GDPR readiness assessment and implementation can be costly. And time is short. Instead of paying premium fees to local GDPR consultants...
  • Go to top