Information Security Manager

HolcimAs the world's global leader in building solutions, Holcim is reinventing how the world builds.We operate four business segments: Cement, Aggregates, Ready-Mix Concrete and Solutions & Products, and hold leading positions in all regions of the globe, with around 60,000 employees in around 60 countries. Holcim experts solve the challenges that customers face around the world, whether they are building individual homes or major infrastructure projects. Demand for our materials and solutions is driven by global population growth, urbanization, improved living standards and sustainable construction.We are listed at the Swiss stock exchange SIX and Euronext.Job descriptionRole - Information Security ManagerLocation : Airoli - Navi Mumbai (Hybrid)Experience - 8-10 YearsSummaryEducation / QualificationBachelor's degree in Computer Science, Information Technology or Engineering degree in any discipline with experience/ skills in Information Security/ Cybersecurity/ IT Security/ OT Security, etc.CEH/ CFIH/ CISSP/ CISM/ CRISC certifications are added advantageRoles and Responsibilities:ExperienceAt least 10+ years of experience in Information Security/ Cybersecurity, primarily in IT Security Projects/ Assessments/ Implementation, Security Design/ Architecture/ Implementation/ Operations/ Reviews, IT Risk Assessment, Vendor Security and Risk Assessments, Cybersecurity Engineering, Business Case Preparation, Data Protection and Privacy initiatives, etcRequired skills:IT & Security Risk Assessment Frameworks and ProcessesGood knowledge in ISO 27001, NIST Cybersecurity FrameworksNetwork & Security Fundamentals with Hands-on experience preferredKnowledge/ Experience in Application Security/ SSDLC/ DevSecOps and Cloud SecurityIT/ OT Security Projects, Solution POCs/ Evaluations, etcStrong People and Project Management expertise in IT Security/ Information SecurityResponsibilities:Planning, Supporting and Driving various IT Security, OT Security, Cybersecurity/ Data Security and Privacy Projects/ Initiatives/ POCs, as neededPerforming Security Reviews for IT/ Business Projects/ Requirements and ChangesAssessing and managing risks, vulnerabilities, threats and compliance within the RegionIT/OT Cybersecurity Assessment , Control Implementation and SupportEnsure VAPT are embedded as part of our Application Development, Enhancement and Release Lifecycle Processes.Create, Review and Update Security Policies and Guidelines, as neededCybersecurity Awareness Training and CampaignsThird Party/ Vendor Security & Risk AssessmentSecurity Reviews and Approvals for Third Party/ External Accesses and Data SharingSupporting the implementation of DevSecOpsParticipate in various internal forums/ working groups within Holcim on IT Security, Cloud Security, Application Security, SOC/ CSC and contribute to global security initiatives and projectsCyber/ Security Incident Response, Investigation, Root Cause Analysis, Corrective and Preventive Action PlansData Protection and Privacy Initiatives PRB