11+ Information security management system Jobs in India
Apply to 11+ Information security management system Jobs on CutShort.io. Find your next job, effortlessly. Browse Information security management system Jobs and apply today!
Roles and responsibilities:
- Audit the current Information Security system and procedures and do a Gap analysis
- Identify immediate potential Information Security Risks and manage remediation tasks through to closure
- Create an Information Security Compliance Roadmap and execute end-to-end compliance initiatives by that roadmap
- Design high-quality test plans and direct Data/Information security control test activities
- Continuously improve Octro Data/Information security control framework
- Maintain handbook pages and procedures related to Information security compliance
- Identify opportunities for Information security compliance control automation, execute them and then maintain
- Provide actionable and constructive advisement to cross-functional teams, including driving remediation activities for high and select moderate-risk Observations across all Octro departments
- Design, develop, and deploy scripts to automate continuous control monitoring, administrative tasks and metric reporting for all security compliance programs
- Direct and support external audits as and when necessary
Requirements
- A minimum of 6-8 years' experience working with Data/Information Security Compliance programs
- Detailed knowledge of common information security management frameworks, regulatory requirements and applicable standards such as: ISO, SOC 2, GDPR, PCI etc.
About Octro Inc :
We are one of the fastest-growing mobile gaming companies around, a technology-driven organization at heart, and take pride in the platforms we create.
Founded in 2006 with a mission to create productivity applications for Mobile Devices. After pioneering one of the first mobile Voice-over-IP infrastructures called OctroTalk, the company ventured into building mobile gaming platforms. Sequoia Capital has invested in Octro. The funding was announced in June 2014.
Amazon Web Services (AWS)
PythonCloud DevOps Architect
· Practices self-leadership and promotes learning in others by building relationships with cross- functional stakeholders; communicating information and providing advice to drive projects forward; adapting to competing demands and new responsibilities; providing feedback to others; mentoring junior team members; creating and executing plans to capitalize on strengths and improve opportunity areas; and adapting to and learning from change, difficulties, and feedback.
· Ensure appropriate translation of business requirements and functional specifications into physical program designs, code modules, stable application systems, and software solutions by partnering with Business Analysts and other team members to understand business needs and functional specifications.
· Build use cases/scenarios and reference architectures to enable rapid adoption of cloud services
in Product’s cloud journey.
· Provide insight into recommendations for technical solutions that meet design and functional needs.
· Experience or familiarity with Firewall/NGFW deployed in a variety of form factors (Checkpoint, Imperva, Palo Alto, Azure Firewall).
· Establish credibility & build deep relationships with senior technical individuals to enable them to be cloud advocates.
· Participate in deep architectural discussions to build confidence and ensure engineering success when building new and migrating existing applications, software. and services to AWS and GCP.
· Conduct deep-dive hands-on education/training sessions to transfer knowledge to DevOps and engineering teams considering or already using public cloud services.
· Be a cloud (Amazon Web Services, Google Cloud Platform) and DevOps evangelist and advise the stakeholders on cloud readiness, workload identification, migration and identifying the right multi cloud mix to effectively accomplish business objectives.
· Understands engineering requirements and architect scalable solutions adopting DevOps and leveraging advanced technologies such as AWS CodePipelines, AWS Code-Commit, ECS containers, API Gateway, CloudFormation Templates, AWS Kinesis, Splunk, Dome9, AWS-SQS, AWS-SNS, SonarCube, Microservices, and Kubernetes to realize stronger benefits and future proof outcomes for customer-facing applications.
· Build use cases/scenarios and reference architectures to enable rapid adoption of cloud services in product’s cloud journey.
· Be an integral part of the technology and architecture community in the public cloud partners (AWS, GCP, Azure) and bring in new services launched by cloud providers into 8K Miles Product Platform scope.
· Capture and share best-practice knowledge amongst the DevOps and Cloud community.
· Act as a technical liaison between product management, service engineering, and support teams.
· Qualification:
o Master’s Degree in Computer Science/Engineering with 12+ years’ experience in information technology (networking, infrastructure, database).
o Strong and recent exposure to AWS/GCP/Azure Cloud platforms and designing hybrid multi cloud solutions. Preferred to be Certified AWS Architect professional or similar
· Working knowledge of UNIX shell scripting.
· Strong hands-on programming experience in Python
· Working knowledge of data visualization tools – Tableau.
· Experience working in cloud environment — AWS.
· Experience working with modern tools in the Agile Software Development Life Cycle.
· Version Control Systems (Ex. Git, Github, Stash/Bitbucket), Knowledge Management (Ex. Confluence, Google Docs), Development Workflow (Ex. Jira), Continuous Integration (Ex. Bamboo), Real Time Collaboration (Ex. Hipchat, Slack).
About Us
We are an AI-Powered CX Cloud that enables enterprises to transform customer experience and boost revenue with our APIs by automating and analyzing customer interactions at scale. We assist across multiple voices and non-voice channels in 30+ languages whilst coaching and training agents with minimal costs.
The problem we are solving
In comparison to worldwide norms, customer support in traditional contact centers is quite appalling, due to a high number of queries, insufficient capacity of agents and inane customer support systems, businesses struggle with a multi-fold rise in customer discontent and bounce rate, resulting in connectivity failure points between them and customers.
To address this issue, IITian couple Manish and Rashi Gupta founded Rezo's AI-Powered CX Cloud for Enterprises 2018 to help businesses avoid customer churn and boost revenue without incurring financial costs by
providing 24x7 real-time responses to customer inquiries with minimal human interaction.
Roles and Responsibilities:-
- To Maintain the required uptime for Azure Cloud and IT Infrastructure.
- To provide the earliest resolution of the reported issues, which may include but are not limited to cloud & end-user related issues.
- Configuring and managing the alerts through Nagios, which may include but is not limited to scripting knowledge.
- Linux and Windows Server administration.
- Managing Firewalls and Domain Controllers.
Requirements
- Having relevant experience of 3+ yrs.
- Sound knowledge of Linux & Windows System administration
- Good Hands-on experience on Azure/AWS ( Willing to work on Azure only)
- Must be an expert in at least one of OpenStack, Cloudify, SaltStack, Rundeck, Ansible
- Good knowledge of networking, firewall & domain controller
- Basic knowledge of DevOps/Scripting
- Should be willing to work in rotational day shifts and WFO
- Flexibility to be able to work in a 24/7/7 environment
Life at Rezo.AI
- We take transparency very seriously. Along with a full view of team goals, get a top-level
- View across the board with our regular town hall meetings.
- A highly inclusive work culture that promotes a relaxed, creative, and productive
- environment.
- Practice autonomy, open communication, and growth opportunities, while maintaining a
- perfect work-life balance.
- Go on company-sponsored offsites, and blow off steam with your work buddies.
Perks & Benefits
Learning is a way of life. Unlock your full potential backed with cutting-edge tools and mentor-ship
Get the best in class medical insurance, programs for taking care of your mental health, and a Contemporary Leave Policy (beyond sick leaves)
Why Us?
We are a fast-paced start-up with some of the best talents from diverse backgrounds. Working together to solve customer service problems. We believe a diverse workforce is a powerful multiplier of innovation and growth, which is key to providing our clients with the best possible service and our employees with the best possible career. Diversity makes us smarter, more competitive, and more innovative.
Explore more here
http://www.rezo.ai/" target="_blank">www.rezo.ai
Experience:- Overall 10 to 12 years of experience of which atleast 5 to 7 years’ experience should be in Information Security. Mandatory is 5 to 7 years’ experience in Information security and with one full end to end implementation experience.
Base location: - Bengaluru - Must
Joining requirement: - Not later than second week of June 2023.
Requirements: -
1. Mandatory - ISO 27001:2013 lead implementor certified
2. Mandatory - ISO 27001:2013 lead auditor certified (but if it is a good candidate, we can still consider)
3. Good to have – CISA, CISM, Risk management certification, Privacy certifications.
4. Mandatory - Atleast one end to end implementation experience of ISO 27001 standard. The candidate should have a good implementation knowledge of ISO 27001, ISO 27002 standards and is required to implement the ISO requirements and run the ISMS program for multiple countries.
5. This immediate requirement is for implementing the ISMS program for our Canadian office location. The candidate should be willing to work from Bengaluru in EST time zone during this implementation phase whenever required.
6. Good documentation skills.
7. Develop, implement, maintain, review and continually improve Information Security policies.
8. Good understanding and knowledge of applicable legal and regulatory requirements as relevant to information security.
9. Manage and maintain a risk register / risk database along with risk treatment plans.
10. Good understanding of physical and environmental security.
11. Conduct Internal Audits based ISO 27001 standards and Personal Data Protection policies. A good experience in independently conducting Internal and supplier audit with respect to information security.
12. Provide training to the employees on Privacy & Information Security Management System on regular intervals.
13. The greater part of the job involves interacting with people, interviewing them / auditing, Preparing audit reports, discussing / persuading / influencing.
14. Mandatory: Good verbal and written communication skills. Eye for details.
15. Good presentation skills.
16. Since this is a trusted role, candidates must be willing to undergo extensive background checks to verify their identity, character, qualifications, skills and experience.
- Extensive experience in designing, building & supporting Azure Managed Services Operations.
- Good understanding of Azure IaaS and PaaS services (Azure VMs, App Service, VM Scale set, Storage, Web App, Function App, Logic App, SQL instance, Data factory, Key vault, API management service etc.).
- Good understanding of Azure networking, vNet, NSG, various load balancing services, VPN, Express Route and firewalls in cloud environment.
- Knowledge on Cloud Adoption Framework.
- Hands on Experience in migration of various workloads to Azure from on-prem sources like VMware, Hyper-V, Physical Servers and from other Clouds.
- Knowledge of Azure Backups and ASR (Azure Site Recovery).
- Strong Knowledge on Containerization and Orchestration (Docker, Kubernetes, AKS).
- Powershell Scripting, Azure CLI, ARM templates writing, setup automation for resources provisioning and other IaC tools like terraform, Ansible is an added advantage.
- Knowledge on Azure automation and Automation Desire State Configuration.
- Knowledge on Azure Devops or GIT Actions on CI/CD pipeline configuration.
- Strong experience in configuring, maintaining, and troubleshooting Microsoft based production systems.
- Aspire to learn and be able to pick up latest technical advances in Azure and be able to implement it.
- Certificate on Azure Administrator & Azure Architect has added advantage.
BASIC QUALIFICATIONS
- BS level technical degree or equivalent professional
- Skills to represent AWS ProServe well within the customer’s environment and drive discussions with senior personnel regarding trade-offs, best practices, project management and risk mitigation
- Demonstrated ability to think strategically about business, product, and technical challenges
- ·Highly technical and analytical, possessing 15 or more years of IT implementation experience
- ·Proven experience with software development life cycle (SDLC) and agile/iterative methodologies required
- Hands on experience in infrastructure implementation
- Automation skills python, powershell knowledgeand cloud formation template
- Strong experience in Architecture, designing and migrating applications on the AWS platform
- Experience with IT compliance and risk management requirements (eg. security, privacy, SOX, HIPPA etc.)
- Experience working with customers, partners or third-party developers
- Strong verbal and written communications skills and ability to lead effectively across organizations
PREFERRED QUALIFICATIONS
o Demonstrated success as a Cloud Infrastructure architect or consultant working with various platforms
o Experience architecting highly available systems that utilize load balancing, horizontal scalability and high availability
o Cloud certifications
o Good exposure to Agile software development and DevOps practices such as Infrastructure as Code (IaC), Continuous Integration and automated deployment
o Presenting at public events such as technology conferences, hackathons, blogging, writing on technical forums, etc.
What are we looking for?
An enthusiastic individual with the following skills. Please do not hesitate to apply if you do not match all of it. We are open to promising candidates who are passionate about their work and are team players.
Key Responsibilities & expectations from the candidate
- Must have strong experience in Information Security Management system(ISMS), creation of policy, procedures and implementation.
- Operates as a key contributor to the RFP, Third-Party Risk assessment, cloud security assessment etc.
- Lead the strategic and tactical development of information security framework, risk management and new compliance initiatives
- Subject matter expertise in ISO 27001, SOC2, CCPA, CPRA, GDPR, PCI DSS and HIPAA.
- Must have a strong experience in the documentation process and reviewing MSA, SCC, SLA & DPA.
- Good knowledge of BCP/DR, Incident response, VA/PT and Audit methodologies of various compliance frameworks.
- Good knowledge of Access management, Network, Application Security, Encryption, Backup, Physical Security, ISMS Training & Awareness etc..
- Ability to deal with the customers and vendors on Security and privacy matters.
- Knowledge of Core IT processes, SDLC, network infrastructure will be useful.
Personal Attributes
- Good written, oral, and interpersonal communication skills.
- Ability to conduct research into IT security issues
- Ability to present ideas in business-friendly and user-friendly language.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Highly self-motivated and hardworking.
Qualification and certification
- Bachelor’s/master's degree in Security, Computer Science, Management Information Systems, Engineering or related field.
- Should be at least ISO 27001 lead auditor or lead implementer.
- 3+ years of related work experience in information security governance, risk and compliance (GRC) or relevant compliance roles in the SaaS industry.
What can you look for?
A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact, and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the benefits of being here.
We are
It is a rapidly growing fintech SaaS firm that propels business growth while focusing on human motivation. Backed by Giift and Apis Partners Growth Fund II, Company offers a suite of three products - Plum, Empuls, and Compass. Company works with more than 2000 clients across 10+ countries and over 2.5 million users. Headquartered in Bengaluru, Company is a 300+ strong team with four global offices in San Francisco, Dublin, Singapore, New Delhi.
Way forward
We look forward to connecting with you. As you may take time to review this opportunity, we will wait for a reasonable time of around 3-5 days before we screen the collected applications and start lining up job discussions with the hiring manager. We however assure you that we will attempt to maintain a reasonable time window for successfully closing this requirement. The candidates will be kept informed and updated on the feedback and application status.
What you will do:
- Working closely with the external auditors to achieve common goals
- Conducting Enabling Service Audit (HR, Admin, IT) once in 6 months for the verification of ISMS & QMS Standards
- Performing ISMS and Internal Audit
- Being part of the external Audits (ISMS, QMS & CMMI)
- Managing of implementation of ISMS
Desired Candidate Profile
What you need to have:- Strong communication and team building skills with proficiency at grasping new technical concepts quickly and utilizing the same in a productive manner
- Experience in ISO27001, Internal Audits, CMMI
DockerWe are seeking a Security Program Manager to effectively drive Privacy & Security Programs in collaboration with cross functional teams. You will partner with engineering leadership, product management and development teams to deliver more secure products.
Roles & Responsibilities:
- Work with multiple stakeholders across various departments such as IT, Engineering, Business, Legal, Finance etc to implement controls defined in policies and processes.
- Manage projects with security and audit requirements with internal and external teams and serve as a liaison among all stakeholders.
- Managing penetration tests and security reviews for core applications and APIs.
- Identify, create and guide on privacy and security requirements considering applicable Data Protection Laws and implement them across software modules developed at Netmeds.
- Brainstorm with engineering teams to figure out how privacy and security controls can be applied to Netmeds tech stack.
- Coordination with Infra Teams and Dev Teams on DB and application hardening, standardization of server images / containerization.
- Assess vendors' security posture before onboarding them and after they qualify, review their security posture at a set frequency.
- Manage auditors and ensure compliance for ISO 27001 and other data privacy audits.
- Answer questions or resolve issues reported by the external security researchers & bug bounty hunters.
- Investigate privacy breaches.
- Educate employees on data privacy & security.
- Prioritize security requirements based on their severity of impact and product roadmap.
- Maintain a balance of security and business values across the organisation.
Required Skills:
- Web Application Security, Mobile Application Security, Web Application Firewall, DAST, SAST, Cloud Security (AWS), Docker Security, Manual Penetration Testing.
- Good hands-on experience in handling tools such as vulnerability scanners, Burp suite, patch management, web filtering & WAF.
- Familiar with cloud hosting technologies (ex. AWS, Azure). Understanding of IAM, RBAC, NACLs, and KMS.
- Experience in Log Management, Security Event Correlation, SIEM.
- Must have strong interpersonal skills and should be able to communicate complex ideas seamlessly in written and verbal communication.
Good to Have Skills:
- Online Fraud Prevention.
- Bug Bounty experience.
- Security Operations Center (SOC) management.
- Experience with Amazon AWS services (EC2, S3, VPC, RDS, Cloud watch).
- Experience / Knowledge on tools like Fortify and Nessus.
- Experience in handling logging tools on docker container images (ex. Fluentd).
Docker
Kubernetes● Research, propose and evaluate with a 5-year vision, the architecture, design, technologies,
processes and profiles related to Telco Cloud.
● Participate in the creation of a realistic technical-strategic roadmap of the network to transform
it to Telco Cloud and be prepared for 5G.
● Using your deep technical expertise, you will provide detailed feedback to Product Management
and Engineering, as well as contribute directly to the platform code base to enhance both the
Customer experience of the service, as well as the SRE quality of life.
● The individual must be aware of trends in network infrastructure as well as within the network
engineering and OSS community. What technologies are being developed or launched?
● The individual should stay current with infrastructure trends in the telco network cloud domain.
● Be responsible for the Engineering of Lab and Production Telco Cloud environments, including
patches, upgrades, and reliability and performance improvements.
Required Minimum Qualifications: (Education and Technical Skills/Knowledge)
● Software Engineering degree, MS in Computer Science or equivalent experience
● Years of experiences as an SRE, DevOps, Development and/or Support related role
● 0-5 years of professional experience for a junior position
● At least 8 years of professional experience for a senior position
● Unix server administration and tuning : Linux / RedHat / CentOS / Ubuntu
● You have deep knowledge in Networking Layers 1-4
● Cloud / Virtualization (at least two): Helm, Docker, Kubernetes, AWS, Azure, Google Cloud,
OpenStack, OpenShift, VMware vSphere / Tanzu
● You have in-depth knowledge of cloud storage solutions on top of AWS, GCP, Azure and/or
on-prem private cloud, such as Ceph, CephFS, GlusterFS
● DevOps: Jenkins, Git, Azure DevOps, Ansible, Terraform
● Backend Knowledge Bash, Python, Go (other knowledge of Scripting Language is a plus).
● PaaS Level solutions such as Keycloak for IAM, Prometheus, Grafana, ELK, DBaaS (such as MySQL,
Cassandra)
About the Organisation:
The team at Coredge.io is a combination of experienced and young professionals alike having
many years of experience in working with Edge computing, Telecom application development
and Kubernetes. The company has continuously collaborated with the open source community,
universities and major industry players in furthering its goal of providing the industry with an
indispensable tool to offer improved services to its customers. Coredge.io has a global market
presence with its offices in US and New Delhi, India.
DockerJob Description :
Roles and Responsibilities:- A cloud engineer is responsible for the design, review of architectures & construction of cloud service provider environments.
- Duties, and Responsibilities may include the following:
- § Responsible for the evaluation of cloud strategy and program architecture
- § Responsible for gathering system requirements working together with application architects and owners
- § Responsible for generating scripts and templates required for the automatic provisioning of resources
- § Discover standard cloud services offerings, install, and execute processes and standards for optimal use of cloud service provider offerings
- § Build software for the organization’s systems and ES as a service offering
- § Stay well-informed of failures and complications related to a cloud offering
- § Responsible for debugging technical issues inside a complex stack involving virtualization, containers, microservices, etc.
- § Collaborate with the engineering teams to enable their applications to run on Cloud infrastructure.
- § Experience with OpenStack, Linux, Amazon Web Services, Microsoft Azure, DevOps, NoSQL etc.
Qualifications:
A qualified applicant must possess a thorough knowledge of at least some of the following:
Education
- Bachelor of Science degree in Computer Science, or Engineering, or in other related technical field. In addition to educational qualification, they should possess at least 3-5years IT experience with cloud operations and systems administration
Knowledge Needed-
- A cloud engineer must have adept technical skills and cognate experience to be hired.
- Practical object-oriented development knowledge with at least Scala or Java, knowledge of systems like ZooKeeper, Consul etc., familiarity with containerization technologies such as Docker and Pivotal Cloud Foundry Docker, OpenStack, and Public cloud delivery know-how with AWS and/or Azure
- understanding of software development, engineering, programming languages and tools; Java, Python, Ruby, .NET/C#, HTML, CSS, JavaScript, PowerShell, CI/CD pipelines, and ability to work with Agile methodologies (Scrum, Kanban, Lean Startup, XP)
- Part of the daily tasks of a Cloud Engineer is to work with cross-functional teams (Product Owners, Scrum Masters, Developers, Designers, and Business Analysts), so it is vital that they can work in a team-driven environment
- Cloud technologies become advanced over time, so an essential ingredient that most recruiters look out for in cloud engineers is their willingness to learn and work with new and emerging technologies.
Certification
- Microsoft Azure – 70-533, 70-535 any other infrastructure certification is added advantage.
- Should have relevant cloud certifications such as Microsoft Certified Azure Solutions Architect is added advantage
Follow Cutshort