Information Security Manager - Chennai @ ISG NovaSoft

Qualification : Any Graduate
Job Location: Chennai

Position Overview The Information Security Manager develops and drives the vision for the information security function. InfoSec Manager acts as the authority for the development and enforcement of enterprise security strategy, standards and policies, and has ultimate responsibility for ensuring the protection of corporate information. InfoSec Manager guides the design and continuous improvement of the IT security architecture and Cyber Risk Maturity Model that balances business needs with security risks. InfoSec Manager advises the board and top executives on all security matters and sets directions for complying with regulatory inquiries, inspections and audits.

Roles and Responsibilities

Responsible for information security of Indecomm and ensuring hardware, software & processes are compliant with companys security policies.
Analyze security events from multiple sources including but not limited to events from SIEM tools, SOC Operation, network & host based IDS, firewall logs, server logs, applications and databases.
Revise and ensure process adherence for vulnerability management, patch management, configuration management, device hardeningetc.
Conduct role-based access control user entitlement and access management tasks and reviews.
Assist in providing requirements for new and existing security systems, tools and applications.
Participate in evaluation and review of security systems/tools before procurement and deployment.
Collaborate with cross-functional teams to ensure that infrastructure security policies and best practices are adhered to.
Perform device reviews to ensure compliance with hardening standards, access controls and security-related configuration settings.Review, revise and enforce hardening standards for IT infrastructure.
Serve as project manager/lead within IT security projects.
Promote awareness of applicable regulatory standards, upstream risks and industry best practices within Indecomm.
Prepare security documentation including security procedures, standards, notifications and alerts.
Review and enhance Disaster Recovery capability of IT infrastructure.
Perform risk assessments/security audits for critical vendors and submit report.
Perform risk assessments, internal security audits and document artifacts related to audit, regulatory and legal purposes to be compliant with SSAE16 / SSAE18 (SOC1 / SOC2) audits Requirements:

Minimum 10+ years relevant experience working in Security Domain and Strong experience in SOC operation, Security Audit experience with Network Technologies.
Familiarity with different security technologies Cisco security products, Checkpoint firewalls, McAfee SIEM, IDS/IPS, PKI, encryption, DLP, OS compliance checkers etc.
Working knowledge of processes related to Disaster Recovery & Business Continuity
Has strong written communication skills and good verbal skills
Industry certifications from vendors like ISC2, GIAC, Cisco, CompTIA, Microsoft, RedHat etc. CCNA, MCSE, CISSP or any GIAC certification is desirable
Must be a keen learner, takes initiatives, works across technical & non-technical teams and keeps up-to-date with industry best practices at all times
Ability to work with application owners & infra teams to influence them towards improving security
Good to have working experience with IT Compliance assessments like SOX, PCI, ISO27001, GLBA etc. You should be speaking to us if;

1. You are looking for a career that challenges you to bring your knowledge and expertise to bear for designing implementing and running a world class IT organization
2. You like a job that brings a great deal of autonomy and decision-making latitude
3. You like working in an environment that is young, innovative and operates like a startup but is well established, has some of the biggest banks as customers and the backing of some of the best investors in the world and so provides for the best of both worlds
4. You like to work in an organization that takes decisions quickly, is non-hierarchical and where you can make an impact

Why Indecomm

Indecomm is a leading provider of business services and technology for the US mortgage industry. Indecomm Digital is an established leader in providing next-gen Product Engineering services and focused on transformational outcomes for leading-edge tech companies. We provide hi-tech, differentiated services in next-gen software engineering solutions including Big Data, Analytics, Machine Learning, IoT, Embedded, Mobile, Cloud, UI/UX, and Test Automation to some of the leading technology companies in the world.

Indecomm Digital Services specializes in Data Governance, Digital Transformation, and Disruptive Technologies, helping clients to capitalize on their potential efficiencies. Indecomm Digital has been an instrumental partner in the digital transformation journey of clients across a broad spectrum of industries: Health Tech, Fin Tech, Hi-Tech, Security, Digital Payments, Education Publication, Travel, Real Estate, Supply Chain and Logistics and Emerging Technologies.

Indecomm Digital has successfully developed and delivered more than 1,000 products over the last few years and has led the transformation of a number of Digital Enterprises. With over 3,500 associates worldwide, Indecomm Digital services its clients from global delivery centers and offices in the United States, Costa Rica, Mexico, United Kingdom, India, Malaysia, Singapore, Indonesia, Hong Kong, Philippines, Mauritius, and the Cayman Islands.

Our Software Products Delivery Center of Excellence in Chennai is at the forefront of technology product excellence. With some of the best opportunities to design and build world-class products using the latest technologies and a chance to work on product innovation, product engineering, testing & business analysis.

Some of Our world class products include:

LoanDynamix - a powerful and feature rich core loan servicing system. While built on an iSeries AS400 platform, it also leverages HTML5, JSPs & Bootstrap for the UI layer & Java7, JBoss & Spring as the integration layer with DB2 as the database layer. One of the four leading Core servicing platforms in the entire US market, we have recently re-architected it and now offer it as a SaaS product

Tempo - a feature rich default management system engineered to cater to the entire default loan life cycle, it is built on ASP.net as the UI layer, ASP.net Web API as the integration layer and SQL Server 2014 as the middle tier and database layer. This product is offered as a SaaS product, it competes with technology products built by some of the biggest Technology products companies in the US.

LoanMomentum - an industry leading construction loan servicing system to manage the nuances of the construction lending process; the application is built on VB.Net with SQL server or optionally PostgreSQL as the database layer.

Gators - a vendor management and settlement services system used by the largest title companies in the industry. The legacy application is built on Powerbuilder as the business layer with SQL Server 2008 as the database layer. The modern web version has a Java7 business layer using JSPs.

PowerHub - The nervous system of connecting Indecomm products to one another, and exchanging and transforming data. Indecomm has embarked on an advanced project to build a platform that seamlessly connects our world-class applications allowing them to speak to each other, exchange data and provide powerful on-demand real-time interfaces to third party products and services as well. The PowerHub transportation layer is built on the lightweight but highly scalable ESB, Mule, and offers us tremendous opportunity to create an Industry best integration solution.

Please visit us at www.indecommdigital.com or follow @indecommdigital on twitter.

Please send your updated resume to ra*********p@is*n.com along with below details. 1) Total years of experience
2) Years of experience in information security
3) Years of experience in IT Compliance assessments
4) Years of experience in Security Policy
5) Years of experience in security technologies
6) Years of experience in Security Audit
7) Years of experience in SOC Operations
8) Years of experience in IT Network Technologies
9) Current Company
10) Current Designation
11) Total CTC
12) Fixed CTC(As per the payslip)
13) Expected CTC
14) Notice Period
15) Reason for leaving
16) Current Location
17) Have you gone through the Job description and company Profile? (Yes/No)
18) Why are you interested in this position? (Briefly Explain)
19) What did you understand the JD and how its related to your skill set & career growth? (Briefly Explain)
20) Will you be available to come for face to face interview on week days (Yes/No)

21) Willing to relocate to Chennai

Note: Preferred Immediate Joinee/15/30 days notice candidates. Please excuse 60/90 days notice candidates.

Thanks & Regards,

RAVISANKAR P

Assistant Manager - Talent Acquisition

Indecomm Digital Services

T: 91.44.6685.9398 | M: +91.9994599***

11,TEK Towers, 3rd Floor | Rajiv Gandhi Salai (OMR) |Thoraipakkam|Chennai-600097

www.indecommdigital.com