We are looking for an ISMS Auditor for our office located in Kochi, Kerala.
Responsibilities:
Plan, establish, execute, document & report, consult, verify & close Information Security Internal audits
Knowledge of information protection methodologies and concepts, such as identification and authentication, access control, inception, and audit trails
Perform analysis of information security standards such as ISO 27001:2013 and create compliance reports for information security standards such as ISO 27001:2013 and other requirements
Broad-based IT experience with technical knowledge of Network Design, Infrastructure Audit, IT Security, Vulnerability Assessment, Risk Assessment
Understand clients requirements and perform information security internal audit
Determine the compliance of support functions and delivery verticals against the information security requirements
Facilitate the audits by client and client certified audit firms
Carry out detailed review of the audit remediation plans, continually track issue closures, and conduct re-verification review of issues prior to submitting to client
Maintain an up-to-date understanding of emerging trends in information security and apply new techniques and trends, in-line with overall information security objectives and risk tolerance
Present reports and recommendations to Internal Audit Leader on information security issues
Work independently under the general direction of the Internal Audit Leader to ensure timely and accurate completion of information security internal audit objectives and perform the requisite preparation
Manage Third Party Security Assessment Program to minimize risk associated with business partners and vendors
Perform testing of internal controls specified in Information Security Policies
Recommend security policy changes and enhancements
Support the Information Security program including development, collection, assessment, and reporting of metrics
Desired Candidate Profile:
Ability to plan, execute and document Information Security Internal Audits.
Strong presentation skills and experience with technical, managerial and executive audiences
Prior knowledge and experience on performing testing of internal controls specified in Information Security policies
Ability to measure and report the effectiveness and efficiency of security activities
Collaborate with Internal & External Auditors on information security and compliance matters
Strong analytical skills, ability to analyse operational data
Excellent Documentation, communication, and interpersonal skills
ValueMentor is a leading cyber security service provider with customers in USA, UAE, UK, India, Bahrain, Saudi Arabia, Kuwait, Oman, Qatar, Uganda. We enable clients to reduce risk by taking a strategic approach to cybersecurity. We help you align yo... Read More
.
