Job Title: Information security Analyst, AVP

Location: Pune, India

Role Description

• The Information Security Analyst is responsible for supporting the execution of the Information Security strategy. The Information Security Analyst provides data and analysis to measure the effectiveness of Information Security controls across group wide products and services.

• The Information Security Analyst identifies and evaluates potential areas of Information Security threats by assessing the probability and impact and facilitates feedback for mitigation.

• Roles within Information Security may cover one or more areas of specialty, e.g., Identity & Access Management (which may include, for example, authentication; access management & control; recertification etc.); Information Security ( IS ) Operations (which may for example include, cyber threat operations; cyber forensics, protection against data leakage etc.) and IS Technology (which may include IS architecture, IS engineering, cryptographic services etc.)

Your key responsibilities

• Review Risk Assessment (Application/Technical Risk profile) and Assurance spot checks for Compliance evaluation (e.g., IS/Cloud/SOx/MAS/Client Access Management/other regulatory controls)

• Analysis and verification of compliance issues

• Support stakeholder remediation activities

• Collect and review evidence (e.g., from de-centrally managed applications)

• Create compliance issue tickets and address issues to responsible stakeholders.

• Analyze and identify root causes.

• Provide and prepare data for management communication.

• Preparing reports for stakeholders and management

• Improvement and documentation of operational tracking activities

• Raise Business Requirements to Central Solutions run by other CSO teams.

Your skills and experience

• Attitude of diligence and precision

• Ability to integrate in heterogeneous teams.

• Proactively driving topics, not shunning to address issues to higher management levels.

• Structured way of thinking and working

• Very good communicator

• Very good analytical and problem-solving skills

• Very good English (verbal and written)

• Experience in Excel (advanced)

• Good German skills beneficial

• Good Python programming skills beneficial

• Certifications in ISO 27001 or information security (e.g., CISSP, CISA) beneficial

• Practical experience in Governance or Compliance Monitoring beneficial.

• Knowledge about basic principles of Identity and Access Management beneficial