U

Cyber Governance Manager

Ujjivan Small Finance Bank · Bengaluru, Karnataka, India

8–15 yrs experiencefull_timePosted 4w ago
Apply now →

Job description

Job Description - POSITIONDESCRIPTION JOBTITLE: CyberGovernance Manager GRADE: CM DEPARTMENT: Risk LOCATION: HO SUB-DEPARTMENT: InformationSecurity TYPE OF POSITION: Full-time REPORTSTO: CISO REPORTINGINTO: SpecialistInformation Security ROLEPURPOSE OBJECTIVE - TheCyber Governance Officer under the direct supervision of the CISOis responsible for planning and development of informationsecurity policies. - Plansand manages information security compliance audits and reviews inline with the ISMS Internal audit plan and request / advice fromthe CISO and as per the security assessment and compliancepolicy. SIZEOF THE ROLE FINANCIALSIZE NON-FINANCIALSIZE - CAPEX/ OPEX Budgets resting with the role- 4 cr. - TotalBuying / Procurement- Technology Subscription, consultancy,membership and insurance. 4 CR included as above. - Numberof vendors / consultants- 2 - Newvendor onboarding- Approx. 15 - NewProduct Evaluation- Approx. 15 KEYDUTIES RESPONSIBILITIES OF THE ROLE **Business/Financials** - Planningand developing security policy and standard documents. - Periodicallyreviewing the policy and standard documents. - Planand manage information security compliance audits and reviews inline with the ISMS Internal audit plan and request / advice fromthe CISO and as per the security assessment and compliancepolicy. - SupportingUjjivans IS compliance. - Planning,delivering and managing information security awarenessinitiatives within Ujjivan. - Actingon threat intelligence - Managementof Application security Audits/VulnerabilityAssessments/Penetration Testing/Red Team Exercises - Managementof Cyber Drills - PrivacyFramework Implementation **Customer** - Keepingcustomer information safe and secure. **InternalProcess** - Adheringto information security policy procedure and guidelines. Workingon improving internal process for better security and efficiency. **LearningInnovation** - Shouldcontinuously work on gaining and improving information securityupdates on best practices, new threats and countermeasures tosecure the Ujjivan information security. MINIMUMREQUIREMENTS OF KNOWLEDGE SKILLS Educational Qualifications Bachelorsdegree in Computer Science or related field. Experience 7-8years Certifications CISM/CISSP/CISA/CRISC/ISO/IEC27001 FunctionalSkills - Experience in Information security governance and management. Must havehands on experience in risk assessment and training - Knowledgeof ISO 27001, 31000, COBIT, NIST Frameworks related toInformation Security, Privacy Frameworks such as GDPR,familiarity with RBI Cyber Security Framework.