ETS | Information and Cyber Security Programs Lead | gurugram
Detalhes do emprego
About ETS:ETS is a global education and talent solutions organization, enabling lifelong learners to be future ready. We advance the science of measurement to build the benchmarks for fair and valid skill assessment. We are committed to powering human progress by promoting skill proficiency, empowering upward mobility, and unlocking more opportunities for everyone, everywhere.For more than 70 years, we have developed products and services based on rigorous research and our belief in the power of learning. Our portfolio consists of some of the world's most trusted assessments - including the TOEFL® and TOEIC® exams, the GRE® and the Praxis® family of assessments - along with research, development and innovation that explores new frontiers in learning and measurement. Our educational measurement solutions and research contribute to the development of new methods and tools, inform important dialogue with education policymakers, and shed light on critical issues and potential solutions - all with the aim of creating a world where all learners are able to improve their lives through education.Primary Responsibilities:Assists the CISO with definition of InfoSec program vision and lead continued development of associated materialsWorks closely with other Infosec Managers, Directors and CISO to develop program-level initiatives based on identified gapsPerform impact and risk assessments of various information security assessments such as application security testing, penetration tests, and other control audits.Skills in performing root cause analysis of security incidentsSkills in communicating complex security issues with Engineering and Application DevelopersPartners with InfoSec Managers and Directors to builds and present credible business cases for strategic security initiatives and investmentsContinuously monitors and reports on initiative status, as well as efficacy metrics of current programManages tactical escalations for cybersecurity events, business leader concerns, and trends of interestManage various cybersecurity teams which may change over time through reporting assignments to provide the Deputy CISO with full exposure to the departmentWorks closely with Office of the CIO and FP&A to manage the overall InfoSec budget across all teamsOversees RFPs and evaluations of products and services and negotiates purchasesCollaborates closely with Audit, Compliance and Privacy organizations to achieve cross-functional project successActively participates and is accountable for preparation of senior leadership presentation materialsRepresents the company in discussions with auditors and regulatorsHelps ensure that Information Security is fully engaged and aligned with other organizational stakeholdersAdhere to ethical standards and comply with the laws and regulations applicable to your job functionRequired Knowledge/Skills:Have recent hands on skills with the OWASP and or Penetration Testing Tools and Techniques.Have recent hands on skills as a Cloud Security EngineerHave experience or understanding in malware analysis or incident response especially with MITRE ATT&CKProvide coaching, mentorship and development of cybersecurity talentDeep knowledge of agile software development methodologies and cloud security principlesDemonstrates continuous learning by staying current with evolving security trends and threatsProgram and project management skillsKnowledge and experience with common information security frameworks, ISO/IEC 27001, NIST CSF, and CISEducation & Experience 10+ years in Information Security5+ years as a leader of leaders and teams to drive successful outcomesCISSP preferred AGG
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.