Job | GRC Openings with Tech Mahindra - Pune

Job | GRC Openings with Tech Mahindra - Pune

Experience required for the Job: 7 - 12 years

Job Location: Pune

Hope this message of mine finds you in best of health and spirits.

Currently we are looking for GRC.

Job location – Pune

Experience – 7 to 12 yrs

Certifications : ISO 27001 Lead Implementer / Lead Auditor, CISSP, CISA, CISM, or CEH, Technology

Certifications (Cloud Computing, VMWare, IBM, HP, Microsoft, Oracle, etc.) (atleast one or more of these).

Department : Enterprise Security and Risk Management (ESRM)

Job Description:

• Define the security organization, roles and responsibilities and reporting mechanisms for the program

• Identity and validate the scope of security and compliance requirements applicable to the program

• Identity security service levels, metrics and measurement techniques. Ensure meeting the agreed SLA as per contract on regular basis and reporting compliance to customer security lead.

• Understanding of Siebel CRM, Business Intelligence, business application, surrounding applications and supporting IT infra setup for a Telecom operations

• Develop transition plan for security management services for IT infrastructure devices or components like Servers, Storage, Network Switches, Firewall, WAF, Anti-virus, HIPS, SIEM, Audit Vault & DB Firewall, etc.

• Understanding of Datacenter setup and placement of security devices or components at appropriate place considering industry standards and best practice guidelines.

• Develop questionnaires and checklists for gathering information on as-is security controls

• Conduct gap analysis of current state against the contracted security and compliance requirements

• Provide recommendations for remediation and identify owners

• Design “TO-BE” security processes, procedures and guidelines for the Managed Services Program in accordance with ISO 27002

• Design risk assessment procedures in accordance with ISO 27005

• Design security assurance and review processes

• Establish Computer Security Incident Response (CSIRT) function

• Co-ordinate with customer and internal teams for roll-out of to-be security processes, procedures and guidelines

• Conduct internal security audit/ assessment, PCI DSS compliance and support for External Audits as per contract requirements.

• Understand the legislation and regulatory requirements for customer operations in Telecom industry.

Domain Experience:

• 6-10 years’ experience in information security consulting, program management and service delivery in a firm in telecom industry

• Strong understanding of InfoSec and risk management standards like ISO 27001/27002/27005

• Broad understanding of network and infrastructure security, vulnerability management, application security, PCI DSS and data security

Desirable certifications – CISSP/ISO 27001/CEH.

Please share below details with your updated CV on spirani@techmahindra.com.

1. Current compensation

2. Expected compensation

3. Notice period.

4. Passport no (Mandatory)

5. Date of birth.

6. Current location.

7. Highest Qualification with year of passing and University name -

8. Preferred Job location from – Mumbai \ Pune \ Bangalore \ Noida.

Please ignore this email: -

If you had attended any Interview with at "Tech Mahindra" in last 6 Months for any role.

Thanks & Regards,

Shailina Pirani | RMG | Tech Mahindra

Wing 1, Oberoi Estate Gardens, Chandivali, Andheri (E), Mumbai-72.

(Office: 6688 2000 | Ext: 2063.