Project Manager

Job Title: Manager Information Security – IT

Job Purpose: Acting in a key technical management & execution capacity to

provide a conduit between IT teams and key business stakeholders in your

functional area of IT Security to ensure information technology needs are

managed consistently, following professional IT and global standards, and

delivered with a high level of quality and customer satisfaction.

Reward level: Middle Management

Job Location Gurgaon

Experience 10+ years

Relevant Experience 7+ years

Reporting to: General Manager

Qualification: Bachelor’s degree in IT

Key Deliverables:

 Provide support as Lead auditor towards ISMS and PIMS policies,

procedures, and guidelines and perform regular review and update.

 Perform deep assessment to gather evidence of continuous compliance with

ISO 27001:2022 and ISO 27701:2019, DPDPA, IT Act and Cert In Regulation

including audit logs, records of reviews, timely closure of open audit and risks

and sharing the report with management.

 Conduct regular, documented information security and privacy risk

assessments identifying assets, threats, vulnerabilities, likelihood, and impact

with stakeholders.

 Prioritize identified vulnerabilities, detailed findings, remediation

recommendations, trending reports on vulnerability posture towards closure

with stakeholders.

 Development and implementation of a comprehensive, ongoing security

awareness and training program for all employees.

 Encourage secure behaviours among colleagues and reinforce the

importance of information security and privacy in daily operations.

 Prepare regular report on overall information security posture, GRC maturity,

and risk landscape to relevant stakeholders

 Ability to collect lessons learned from incidents, audits, and assessments to

drive continuous improvement in ISMS/PIMS and security processes.

Key Relationships:

 Internal IT and business customers in MSR.

 Global IT Vendor, market and global (HQ) colleagues, Local vendor partners

 Internal staff - direct reports (where applicable)

 IT vendors, contractors (where applicable)

Knowledge Skills and Abilities:

 Must possess and demonstrate ISO 27001 Lead Implementer/Auditor and ISO

27701 Lead Implementer/Auditor certifications and knowledge.

 In depth understanding of IT Act, DPDPA, Cert In regulations, CIS Controls as

well as UK DPA and ISO 31000

 Good to have certification on CISM (Certified Information Security Manager),

CISSP (Certified Information Systems Security Professional) and Cloud Security

certifications (e.g., CCSK, CCSP, vendor-specific like AWS Security Specialty)

 Familiarity with common vulnerability scanning tools like Qualys (features,

reporting, agent-based vs. network scans) and Cloud Security Posture

Management (CSPM) tools like Wiz (cloud service provider configurations,

misconfigurations, compliance checks in AWS, Azure, GCP).

 Understanding of various penetration testing types (e.g., network, web

application, API, mobile, cloud) and methodologies

 Knowledge of common attack vectors and exploitation techniques like MITRE

ATTACK and DEFEND framework.

 Basic to intermediate knowledge of common security controls and technologies

(e.g., firewalls, EDR, Cloud Security, VAPT tools, SIEM, WAF, DLP, encryption).

 Understanding of network protocols, operating systems (Windows, Linux), and

common application architectures.

 Knowledge of audit principles and practices (internal and external audits).

 Understanding of corrective action planning and non-conformity management.

 Understanding of third-party risk management principles and vendor due

diligence processes.

 Excellent technical writing skills for creating clear, concise, and comprehensive

security policies, standards, and procedures.

 Ability to analyse complex risk data and present actionable insights.

 Hands-on experience with Qualys for configuring scans, analysing reports, and

managing vulnerabilities.

 Hands-on experience with Wiz CSPM for monitoring cloud environments,

identifying misconfigurations, and generating compliance reports.

 Proficiency with GRC platforms or tools for managing policies, risks, and controls

 Exceptional verbal and written communication skills to articulate complex security

concepts to technical and non-technical stakeholders

 Ability to build strong relationships and collaborate effectively with diverse teams

(IT, Legal, HR, Development, Business Units).

 Skills in influencing behaviour and driving change across the organization to

improve security posture.

 Strong analytical skills to diagnose security issues, identify root causes, and

develop effective solutions.

 Ability to critically evaluate security controls and identify gaps.

 Contract review and negotiation skills specifically for security-related services.

 Ability to effectively manage vendor relationships and performance.

 Ability to develop and deliver engaging security training sessions and awareness

campaigns.

 Ability to stay updated with the latest security threats, vulnerabilities,

technologies, and regulatory changes.

 Capacity to quickly learn and adapt to new tools and methodologies.

 Meticulous attention to detail in policy creation, audit documentation, and

vulnerability analysis.

 Ability to act calmly and effectively during security incidents and contribute to

incident response efforts.

mail updated resume with salary details-

email: etalenthire[t]gmail[dot]com

satish- 88O 27 49 743

Who You Are:

• You’ve built scalable, production-ready APIs in fast-paced environments, and are comfortable with the challenges that come with a growing startup.
• You understand event-driven architectures and have hands-on experience building real-time applications.
• You are fully capable of taking ownership of backend systems, from designing the database schema to writing efficient, maintainable code.
• You think beyond the code: optimizing performance, scalability, and security are as important as building new features.
• You’re comfortable troubleshooting complex issues, whether that’s API bottlenecks, database performance, or production issues.

Responsibilities:

• Design, implement, and manage a NestJS backend with a modular, scalable architecture that can easily handle real-time events and communication.
• Develop and maintain WebSocket services for real-time event-driven updates and ensure seamless communication across the system.
• Integrate RabbitMQ for reliable internal messaging, handling queues and ensuring event-driven workflows are efficient and fault-tolerant.
• Implement database management strategies using MongoDB, Redis, and Elasticsearch, ensuring efficient data handling, indexing, and optimization.
• Integrate with external APIs (JSON-RPC, XML-RPC, REST) to enhance system capabilities.
• Ensure high performance of the system by optimizing database queries, implementing caching strategies using Redis, and ensuring optimal indexing and data flow.
• Implement role-based authentication and authorization mechanisms using JWT, OAuth, and RBAC patterns within NestJS.
• Follow security best practices to ensure sensitive data is protected, credentials are stored securely, and the system is resilient to common vulnerabilities.
• Work collaboratively with cross-functional teams to ensure seamless integration between different services and technologies.

Must-Have Skills:

• Strong proficiency in Node.js and NestJS with TypeScript.
• Solid experience with MongoDB, Redis, and Elasticsearch for data storage and real-time data handling.
• In-depth knowledge of WebSockets and Socket.IO in NestJS Gateways, enabling real-time communication and updates.
• Experience with RabbitMQ for message queuing and asynchronous task handling.
• Strong understanding of authentication & authorization systems using JWT, OAuth, and RBAC (Role-Based Access Control).
• Expertise in optimizing APIs, including techniques for caching, improving database performance, and reducing latency.
• Familiar with API security best practices, including secure storage of credentials, encryption, and safeguarding sensitive data.

Key Skills:

• TypeScript, NestJS, WebSockets, Socket.io
• Redis, MongoDB, Elasticsearch, RabbitMQ
• API Optimization, JWT, OAuth, RBAC
• Real-time communication, Event-driven architecture

Responsibilities

• Interact closely with design, product, and development teams to create elegant, usable, responsive and interactive interfaces across multiple devices.
• Turning UI/UX designs into prototypes, creating excellent interactions from designs, writing reusable content modules and maintainability of the code.
• Implement UI development principles to ensure that the product client-side serves at scale.
• Review and optimize the app usage by monitoring key metrics and rectifying the issues proactively.
• Review and Optimize application usage, by monitoring key metrics, for maximum speed and scalability
• Mentoring and guiding the team members.
• An ability to perform well in a fast-paced environment and bring in optimal flow for rapidly changing design/ technology.

Requirements

• 5+ years of relevant work experience as a web developer, UI developer, Angular Developer or front-end engineer.
• Sound knowledge in HTML, CSS & JavaScript.
• Familiar with UI layouts, SASS, Bootstrap, and the CSS GRID system
• Proficient with Typescript (Angular 2 & above)
• Thorough understanding of the responsibilities of the platform, database, API, caching layer, proxies, and other web services used in the system.
• Passionate to create good design and usability
• A team player with excellent communication skills

KEY RESPONSIBILITIES WILL INCLUDE:

• Participating in the entire product lifecycle (analyze, develop, test, release, and support.
• Contributing to research for new web and mobile technologies and recommend solutions to improve interface designs and interactions
• Testing, debugging, and fine-tuning to optimize the application’s performance.
• Designing intuitive applications to enhance users’ experiences.

DESIRED SKILLS AND EXPERIENCES:

• 2+ year experiences of mobile/web application development and system integration.
• Must be a skilled programmer with knowledge of coding best practices and ability to produce highly readable and maintainable code.
• Management and support of Google Play Store and Apple App Store.
• Experience in API development and integration with third-party APIs
• English communication is required. Great communication skills to coordinate across technical teams and business stakeholders.
• Creative, detail-oriented, and with good problem-solving skills
• Ability to collaborate with and lead other development team members.
• Ability to work in multiple projects and thrive in a fast-paced environment
• Candidate must possess at least a bachelor's degree or Post Graduate Diploma in Computer Science/Information Technology or equivalent.
• Specialization in IONIC must.

KNOWLEDGE OR EXPERTISE IN THE FOLLOWING ARE AN ADVANTAGE:

• Specialization in HTML5, CSS3, jQuery, and JavaScript.
• Experience with web service integration (REST, JSON, XML).
• Experience or knowledge with Git, Gitlab, GitHub is a plus.

• 4 - 5 years of system engineering experience on any programming language such as Java / .net / Python / angular
• Must have delivered 5 to 6 real time integration engagements for Archer
• Must have experience in developing Custom Objects on Archer to call deployed APIs or Archer’s internal APIs
• Must have strong expertise in developing multi-threaded, scalable applications to support heavy data transactions
• Must have strong expertise in designing applications with architectural patterns such as MVC
• Great to have exposure to DevOps or DevSecOps
• Great to have exposure to source code review or secure coding practices

Description

We are looking for a stellar Mobile App developer to help us build our next Android app for our IoT Devices/Application.

Responsibilities:

• Build our Android app for our IoT Devices/Applications
• Work with product owners to spec the requirements.
• Design, code, test and deliver various features in our product roadmap
• Fix customer issues as needed.
• Integration with Amazon Alexa, Google Home Kit and other third party platforms.

Requirements

Required Skills:

• 4+ yrs experience in building Mobile apps for Android for Phone and tablet using Java
• 2+ yrs experience in building Mobile apps for Android using Kotlin
• Strong UI development skills in terms of design
• 2+ yrs in building/consuming APIs
• Hands on knowledge of IoT
• Hands on knowledge of Unix/Linux.
• Knowledge of any of the Application servers like Apache/ NginX
• Good oral and written communication skills in English

Preferred Skills:

• 2+ yrs in building IoT/Embedded devices.
• 2+ years experience in HTML, JS, AJAX, and related browser side web technology
• 2+ yrs in Python, Php, Java, Node.js is desirable
• Strong networking knowledge.
• Experience with scrum development, Jira & Git

• Research, outline, write and edit new and existing content, working closely with various departments to understand project requirements
• Independently gather information from subject matter experts to develop, organize, and write procedure manuals, technical specifications, and process documentation
• Work with development and support leads to identify all documentation repositories, revise and edit, and determine the best solution for data compilation and centralized storage
• Research, create, and maintain information architecture templates that uphold organizational and legal standards, and allow for easy data migration
• Develop content in alternative media forms for maximum usability, with a consistent and cohesive voice across all documentation

Preferred Qualifications

• Proven ability to handle multiple projects simultaneously, with an eye for prioritization
• Firm understanding of the systems development life cycle (SDLC)
• Previous software development experience
• Certification through the Society for Technical Communicators
• Experience using XML tools