Minimum Qualification / Professional Skills Requirements-
Preferably BE/MCA (Computer Science) with 8-10 years of relevant experience, out of which 4+ years should be in Information Security / Cyber Security- policies, procedures, operations, and incident response .
Having hands on experience on Forensics tools, SIEM, DLP, IPS/IDS.
Sound knowledge and capabilities to investigate information security incidents and manage communications with key stakeholders.
Solid knowledge of information systems vulnerabilities and providing remediation recommendations for complex business IT environments.
Thorough understanding of Information Security threats including but not limited to: Malware, Advanced Persistent Threats, Phishing, Suspicious Network Traffic, Social engineering and Internal Threats.
Must be well versed in Windows operating system environments, Active Directory, various authorization and authentication mechanisms/software, and TCP/IP networks.
Key Accountabilities/ Job Description
Manage the Information Security Incident Response Program. The program includes monitoring, preventing, and resolving adverse events or incidents that threaten companys information assets or client assets. This is accomplished by initiating and completing escalation procedures for security incidents or fraud events.
Maintain the Information Security Incident Response Program. This is accomplished by measuring the effectiveness of the program, making recommendations for improvements to the program, and leading projects to implement improvements.
Define and track metrics which will identify to management the trends and tendencies in information security incidents. Metrics should also be developed to measure the effectiveness of existing controls. Metrics must be quantifiable and readily obtainable
Create and distribute the Information Security Incident Report. This report includes statistics, graphs, and summaries related to information security incidents at Genpact.
Working with other team members/personnel, leads effort to identify, control, remediate all Information Security incidents. Performs lessons learned to improve Information Securitys response to incidents
To enable company legal & compliance team by providing support of digital evidence collection, preservation, forensics analysis, reporting and communications
Integrate information security incident response plans with the organizations disaster recovery and business continuity plan.
Organize, train and equip teams to respond to information security incidents. Create adequate user awareness on security incident response across the company
Periodically test and refine information security incident response plans.
Conduct reviews to identify causes of information security incidents, develop corrective actions and reassess risk. Drive, monitor, track the closure of identified corrective actions