Overview
Chief Information Security Officer/CISO Jobs in Mumbai, Maharashtra, India at Netcore Cloud
Title: Chief Information Security Officer/CISO
Company: Netcore Cloud
Location: Mumbai, Maharashtra, India
Type: Full Time
Category: IT/Tech, Security
Position: Chief Information Security Officer (CISO)
Chief Information Security Officer (CISO) | Mumbai Location
Position Summary:
The Chief Information Security Officer (CISO) is aseniorleadershiproleresponsible for establishing, implementing, and managing the organization’s comprehensive information security strategy. With a focus on protecting company assets, customer data, and application security, the CISO will oversee risk management, compliance, incident response, and security operations while aligning security initiatives with the organization’s business objectives.
Key Responsibilities
StrategicLeadership:
– Define, implement, and maintain the organization’s information security vision, strategy, and roadmap.
– Provide strategic guidance on risk management, security policies, and emerging threats to senior executives and stakeholders.
– Leadcross-functional collaborationto embed security into business processes and systems.
Risk and Security Program Management:
– Develop, enforce, and maintain comprehensive security policies, procedures, and standards.
– Conduct enterprise-wide risk assessments, vulnerability analyses, and threat modeling to address emerging risks.
– Monitor, analyze, and respond to security alerts, logs, and reports to identify potential threats.
Incident Response and Recovery:
– Oversee the creation and execution of incident response strategies and playbooks.
– Lead investigations into security incidents, coordinate remediation efforts, and develop preventive measures.
– Communicate effectively with internal teams, stakeholders, and external regulators during incident management.
Compliance and Audit:
– Ensure adherence to security regulations and standards, such as ISO 27001, GDPR, SOC 2, and other industry-specific requirements.
– Lead and support internal and external audits, ensuring timely closure of findings.
– Maintain detailed documentation of security frameworks, incidents, and compliance efforts.
Security Awareness and Culture:
– Build and maintain a culture of security awareness throughcomprehensive trainingprograms.
– Partner with business leaders to promote employee accountability and understanding of security best practices.
TechnicalLeadership:
– Oversee the implementation and operation of security tools and technologies, including SIEM, firewalls, intrusion detection/preventionsystems, and encryption solutions.
– Conduct regular penetration testing, vulnerability scans, and security assessments.
– Stay informed of emerging security threats, tools, and technologies to continually enhance security posture.
Application Security Oversight:
– Collaborate with software development teams to integrate security into the Software Development Lifecycle (SDLC).
– Conduct application security reviews, vulnerability assessments, and securecode reviews.
– Establish and enforce secure coding standards, ensuring applications are designed with security as a core feature.
– Provide mentorship and training to development teams on application security principles and best practices.
Qualifications
Education:
– Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
– Advanced certifications such as CISSP, CISM, OSCP, CEH, or equivalent are highly preferred.
Experience:
– Minimum of12+ yearsof progressive experience in information security, includingleadership roles.
– Demonstrated expertise in managing enterprise-wide security programs, especially w…
