This job ad has been posted over 30 days ago...

19

applicants

IT Compliance Auditor Full-time

at Auriseg Consulting Private Limited in Chennai (Published at 20-11-2017)

Designation : IT Compliance Auditor

Location : Chennai
Experience Required : 2-5 years
Job Purpose : Perform Information Security Audit based on ISO 27001, PCI DSS,etc. Standards & Applicable Legal Compliances

Job role:

Identify and assess potential security risks for Auriseg Clients Production environment and evaluate, specify and propose appropriate organizational,procedural and technical security measures to mitigate the risk of a compromise of Client assets impacting the availability, confidentiality and integrity ofservices and data, corporate image or brand.
Supporting activities related to the Risk Register.
Supporting activities related to ISO27001 certification, .
Support and track activities for Risk Mitigation.
Identify, monitor and report on ISMS (Information Security Management Systems) KPIs.
Analyse ISMS performance and follow up on corrective actions as well as improvement initiatives.
The proposed measures should be in-line with the relevant Corporate Security Directives as well as with Compliance and Industry standards in the Security area.
Regular review the effectiveness of the implemented security controls and its
adherence to by conducting internal audits or supporting external audits.

Main Responsibilities:

Complete ISO 27001 Implementation to certification.
Regularly review, assess and validate effectiveness of all controls.
Regular compliance review of implemented security policies, procedures and measures
Regularly review and report on Security and Compliance alignment.


Analyze and control areas of responsibility affecting Global Operations risk, security and compliance as well as conducting a performance review.
Need to support as an individual contributor.


Skills & Knowledge – Technical / Functional:

Expertise in security policies, standards and procedures
Expertise in security controls
Good understanding of Internet protocols, applications, operating systems, cryptographic methods
Good understanding of network and systems architecture
Good understanding of physical security
Excellent understanding of security and auditing standards ( ISO27000,PCI/DSS additional auditing standards a plus)
Good presentation and communication skills
Project management skills
Basic understanding of the major laws and compliance standards which may impact
to specific security set-up
Good understanding of Data Privacy
ISO 27001 Lead Auditor / Lead Implementer knowledge
Fluent in English

Education

BE, B.Tech or MCA, MSc in Computer Science or equivalent Degree.

Project management experience

Several years of IT Security and/or IT Risk Management experience
Industry Certification in Security or Auditing area (e.g CISSP, CEH, CISA, ISO 27001 Lead Auditor & Lead Implementer.


Recent jobs at Auriseg Consulting Private Limited


Viewed: 1026 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend