Security Operation - ISMS

Jio is the new age technology company leading the Digital, Big Data and AI Revolution that is taking place in India. This revolution is going to impact the lives of 1.3 billion Indians and its our responsibility to cater to the needs of every rural and urban Indians by using every skill and technology that is available at our disposal.

Jio has over 400 million customers in India, generating petabytes of data every second, and hence the need to build infinitely scaling, low latency, high throughput and highly available systems.

Education

B.E./B.Tech/MCA in Computer Science

Experience

At least 1-2 years of experience in Risk & Compliance Security Engineer

Job Description

Engage with External and Internal Audit teams for various audit and compliance data requirements

Followup with various stakeholders to organize the audits

Support the assessment and implementation of security and compliance tools and automation

Discussing with stakeholders on identified gaps and mitigations

Tracking for closure and re-testing the closed gaps

Periodic management updates

Knowledge on Cloud (Azure, GCP, AWS) Security concepts and technologies

Awareness of building strategy, design solution using ISMS standards such as ISO 27001/27701

Knowledge in ISO 27001, ISO27701, SOC2, OWASP, NIST, PCI DSS etc. frameworks

Knowledge in cyber security and risk management practices

Knowledge of GDPR, HIPAA and other data protection regulations

Experience in designing of security controls, risk assessment framework, and regulatory requirements

Evaluate risks and develops security standards, procedures, and controls to manage and mitigate the risks

Knowledge in information security management, compliance principles, practices, laws, rules and regulations

Knowledge in cloud security standard frameworks, architecture, design, controls, technology solutions and service orchestration

Knowledge of key industry compliance standards, frameworks, guidelines, policies, security controls

Provide solutions and Implementing effective security strategies on cloud and on-premises

Responsible for providing support and documentation for all activities related to the security architecture

Perform Cloud connectivity solution design based on internal business requirements in the areas of public Cloud IaaS, PaaS & SaaS offerings

Preferred Skills/Knowledge

Knowledge on Cloud (Azure, GCP, AWS) Security concepts and technologies

Good knowledge in ISO 27001, ISO27701, SOC2, OWASP, NIST, PCI DSS etc. frameworks

Good understanding of cyber security and risk management practices

Knowledge of GDPR, HIPAA and other data protection regulations

Strong knowledge of various certifications and controls as per the different industry requirement

Audit exposure of any one of the technology area

Working experience in Public / Private / Hybrid Cloud solutions and their best practices

Good knowledge in Security processes and technologies of Azure or GCP or AWS or on-premises

Good knowledge of different Security Maturity model Assessment and Security Resilience

Understanding of different Security Risk Framework, Risk Assessment and Risk Mitigation techniques