Overview
Chief Information Security Officer (CISO) Jobs in Mumbai, Maharashtra, India at Netcore Cloud
Title: Chief Information Security Officer (CISO)
Company: Netcore Cloud
Location: Mumbai, Maharashtra, India
Chief Information Security Officer (CISO) | Mumbai Location
Position Summary:
The Chief Information Security Officer (CISO) is a senior leadership role responsible for establishing, implementing, and managing the organization’s comprehensive information security strategy. With a focus on protecting company assets, customer data, and application security, the CISO will oversee risk management, compliance, incident response, and security operations while aligning security initiatives with the organization’s business objectives.
Key Responsibilities
Strategic Leadership:
– Define, implement, and maintain the organization’s information security vision, strategy, and roadmap.
– Provide strategic guidance on risk management, security policies, and emerging threats to senior executives and stakeholders.
– Lead cross-functional collaboration to embed security into business processes and systems.
Risk and Security Program Management:
– Develop, enforce, and maintain comprehensive security policies, procedures, and standards.
– Conduct enterprise-wide risk assessments, vulnerability analyses, and threat modeling to address emerging risks.
– Monitor, analyze, and respond to security alerts, logs, and reports to identify potential threats.
Incident Response and Recovery:
– Oversee the creation and execution of incident response strategies and playbooks.
– Lead investigations into security incidents, coordinate remediation efforts, and develop preventive measures.
– Communicate effectively with internal teams, stakeholders, and external regulators during incident management.
Compliance and Audit:
– Ensure adherence to security regulations and standards, such as ISO 27001, GDPR, SOC 2, and other industry-specific requirements.
– Lead and support internal and external audits, ensuring timely closure of findings.
– Maintain detailed documentation of security frameworks, incidents, and compliance efforts.
Security Awareness and Culture:
– Build and maintain a culture of security awareness through comprehensive training programs.
– Partner with business leaders to promote employee accountability and understanding of security best practices.
Technical Leadership:
– Oversee the implementation and operation of security tools and technologies, including SIEM, firewalls, intrusion detection/prevention systems, and encryption solutions.
– Conduct regular penetration testing, vulnerability scans, and security assessments.
– Stay informed of emerging security threats, tools, and technologies to continually enhance security posture.
Application Security Oversight:
– Collaborate with software development teams to integrate security into the Software Development Lifecycle (SDLC).
– Conduct application security reviews, vulnerability assessments, and secure code reviews.
– Establish and enforce secure coding standards, ensuring applications are designed with security as a core feature.
– Provide mentorship and training to development teams on application security principles and best practices.
Qualifications
Education:
– Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
– Advanced certifications such as CISSP, CISM, OSCP, CEH, or equivalent are highly preferred.
Experience:
– Minimum of12+ yearsof progressive experience in information security, including leadership roles.
– Demonstrated expertise in managing enterprise-wide security programs, especially within SaaS or technology-driv…
