Cyber Security Risk and Compliance Associate

Job Description for

Title	Cyber Security Risk and Compliance Associate
Educational Qualification	(E) Graduation from a UGC recognised university.   (D) B.E / B.Tech / M.E / M.Tech / PhD in Computer Science or equivalent
Certification(s)	(D) Certification in ISO27001 Lead Auditor or Implementer/ Security+or equivalent is highly desirable.
Work Experience	(E) Minimum of 2 Years’ of work experience in Cyber Security Audit and Compliance
Skill Set	(E) Perform IT General Controls assessment (E) Perform information security risk assessments (E) Develop policies, procedures, standards and guidelines as per security best practices and standards (E) Conduct ISO 27001:2013/ISO 22301/NIST based IT security assessments (E) Conduct Third Party Risk Assessments based on leading standards and security best practices (E) Develop organizational Cyber Security Strategy and roadmap Knowledge and experience in Data Privacy & Security assessment/implementation (E) Good knowledge and understanding of ISO 27001:2013 standard based ISMS implementation (E) Knowledge on PCI DSS & CMMI preferable
Job Profile	(E) To coordinate, implement and administer information security compliance related activities.  (E) To design internal controls based on the organizational context and risk landscape (E) To facilitate/conduct external audits against information security standards such as ISO27001, HIPAA, SOX, PCI DSS, etc.   (D) Be abreast with latest developments and threats in the cyber world and ensure all emerging cyber risks are mitigated

Notes: 

(E) – Essential

(D) – Desirable

Preeti Dobhal
PwC
Mobile: 8368667400
Email: preeti.dobhal@.in.pwc.com
PricewaterhouseCoopers

Price Waterhousecoopers Private Limited Building 8, Tower B, 8th Floore, DLF Cyber City Gurgan-122002