This job ad has been posted over 30 days ago...



Compliance Specialist Full-time

at [24]7 Inc in Banglore (Published at 25-06-2013)

The overall responsibility of the team is to provide assurance to the management on the Information Security, Compliance and Risk Management of the organization globally. The candidate would be expected to work with various teams to identify and implement the compliance and security requirements globally.

Minimum requirements (Education Qualification & Work Experience):
Any graduate, CCNA, ISO27001 LA, CISSP, CISA, CEH, ITIL foundation

5-7yrs in Application Development/ Product Development field;

3-4 yrs in core information security

Job Responsibilities:

• Facilitate smooth conduct of all security and compliance audits or assessments in any of the following domains (applications, networks and systems, IT Governance, BCP)
• Develop compliance strategy in alignment with business requirements, objectives and metrics
• Conduct product security testing and source code review on [24]7 products as needed.
• Evaluate security of third party and open source components.
• Work with Engineering and Solutions Delivery leadership to define and embrace secure coding standards
• Develop and implement software security processes inside of product management and product engineering processes.
• Translate legal, Statutory and contractual obligations into a cohesive collection of processes and provides the respective stakeholders with the compliance requirements and methodologies.
• Consults stakeholders in defining their process and form these processes into quantifiable requirements through facilitation.
• Uses key business measurements to identify and drive process improvement opportunities for compliance and risk management.
• Understand the details of all security compliance process, executing the process based on various compliance calendars and process areas.
• Understand related process-related policies, practices and methodologies and enable meeting security control/s.
• Support the overall enterprise strategy and process for information security, technology risk management, and compliance.
• Oversee the continuous monitoring and protection of data processing resources.
• Document any special security requirements identified as well as protection measures implemented to fulfill these requirements for the information contained in the information systems
• Evaluate suspected security breaches, work with subject matter experts, and recommend corrective actions.

Note: Applications have been closed.

Viewed: 1369 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend