Overview:
Key Responsibilities & expectations from the candidate
Must have strong experience in Information Security Management system(ISMS), creation of policy, procedures and implementation.
Operates as a key contributor to the RFP, Third-Party Risk assessment, cloud security assessment etc.
Lead the strategic and tactical development of information security framework, risk management and new compliance initiatives
Subject matter expertise in ISO 27001, SOC2, CCPA, CPRA, GDPR, PCI DSS and HIPAA.
Must have a strong experience in the documentation process and reviewing MSA, SCC, SLA & DPA.
Good knowledge of BCP/DR, Incident response, VA/PT and Audit methodologies of various compliance frameworks.
Good knowledge of Access management, Network, Application Security, Encryption, Backup, Physical Security, ISMS Training & Awareness etc.
Ability to deal with the customers and vendors on Security and privacy matters.
Knowledge of Core IT processes, SDLC, network infrastructure will be useful.
Skills:
ISO,SOC2,CCPA,CPRA,GDPR
Keyskills: iso information technology soc2 cpra assistant manager ccpa gdpr