Sr Specialist Information Security GRC ( 81027084 )

03 Oct 2024

Information Security

Mumbai RCP

Monitor and maintain an effective internal security control environment
in accordance with company policies and procedures
Conduct internal periodic assessments/audits and prepare reports and
publish them to the stake holders Track and drive closure of
findings/gaps Publish regular compliance status dashboards for
management review
Prepare audit checklists, reports, metrics and dashboards in line with
global standards like ISO 27001, PCIDSS, NIST and specific requirements
from applicable regulations & laws for Jio business eg Telecom
regulation, RBI Regulations, Indian IT Act, Data protection and privacy,
RBI Cyber Security Framework etc
Conduct audits on vendors to ensure that security and compliance
controls are implemented as per company policy and contractual
requirements
Support annual audit activity carried out by group s corporate
internal audit teams to maintain group corporate reporting requirements
Front end external audits conducted by regulatory bodies by working
closely with internal team for preparation and driving the remediation
activities
Support security awareness and training initiatives to promote the
success of companywide security compliance efforts
Monitor the ongoing status of compliance remediation activities for
identified risks and internal and external audit/compliance

B.E/B.Tech/MCA

8 - 12 years

Risk Assessment, Good understanding legal and regulatory guidelines,
Understanding of Certification standards such ISO 27001 (27000 Series),
IT technologies and systems understanding, Security auditing, ITGC
compliance, Security management standards such as ISO 27001, ISO 22301,
Cobit, PCI-DSS, others