Asst. Manager (Information Security) - Job Summary

 Carry out Internal Audits, VA, Application Security Assessment, Reviews to ensure
compliance with TP DIBS Security Policies Procedures requirement as well as process
specific requirements.




B. Roles & Responsibilities

  Carry out compliance reviews as per TP DIBS security procedures and client
security specification

Audits in compliance to ISO 27001, PCI DSS

Risk Assessment and Information Security Audits

Handle documentation policies and procedures

Perform Network VAPT

Hardening review of network and server devices

Vulnerability assessment of new /changed assets

Security Incident management

Change review

Follow up with respective stakeholder to close NCs

Track the IS Awareness on an ongoing basis

Reporting security posture to ISM on an ongoing basis

Client security specifications compliance review




C. Specialized skills / Training / Education and Experience needed to perform the job.

 Education:  Graduate

 CISA / ISO27001 Lead auditor certification preferred.

 Minimum 3-5 year of experience in Information security field

 Good know how of various compliance standards and frameworks like PCI DSS, 
ISO27001:2013, HIPAA, GDPR

Knowledge of security testing methodologies, security metrics and risk assessment.

Understanding of Network, Server, database configuration review and ASV Scan.