AGM -IT Security – Risk Assurance

Cloud, IOT, Technology
Pune
July 27, 2022

Job Overview

  • Date Posted
    July 27, 2022
  • Location
    Pune
  • Expiration date
    --

Job Description

About: 


Vodafone Idea Limited is an Aditya Birla Group and Vodafone Group partnership. It is India’s leading telecom service provider. The Company provides pan India Voice and Data services across 2G, 3G and 4G platform. With the large spectrum portfolio to support the growing demand for data and voice, the company is committed to deliver delightful customer experiences and contribute towards creating a truly ‘Digital India’ by enabling millions of citizens to connect and build a better tomorrow. The Company is developing infrastructure to introduce newer and smarter technologies, making both retail and enterprise customers future ready with innovative offerings, conveniently accessible through an ecosystem of digital channels as well as extensive on-ground presence. The Company is listed on National Stock Exchange (NSE) and Bombay Stock Exchange (BSE) in India.

Role

IT Security & Risk Assurance Manager

Job Level/ Designation

AGM

Function / Department

Technology Security

Location

Mumbai

Job Purpose

Responsible for risk assessment, evaluation, and implementation of compensatory/mitigation controls for IT and underlying Business units. Ensure proper management of vendor de-risking program, implement and manage Security Assurance program for VIL, ensure that the Risk Score of the organization is maintained and monitored on a continuous basis.

Key Result Areas/Accountabilities

Assurance and Risk management-IT

    • Manage and maintain cyber security risk posture (IT and IS process control related to risk) / compliance;  periodic review and follow up of overdue, pending RAF
    • Manage Vulnerability Assessment, Web Application Security testing, Penetration testing, and Technical Controls Review on a periodic manner for IT and its related assets.
    • Involvement in security architecture of new application/projects for VAPT and Application testing.
    • Identification, classification & assessment of critical IT assets, Applications to identify risks associated with them and ensuring mitigation of the same for both internal assets & assets managed by third parties viz. vendors, partners etc.
    • Implementation & maintenance of a Third party vendor risk management framework to periodically assess critical vendors & partners of VIL, perform risk assessment  and mitigation of identified risks, Track and monitor remediation plans prepared by the third party to closure, Review closure evidence provided to determine appropriate closure
    • Implementation of MBSS,CR documents for new and existing IT assets, Application
    • Ensure on-time, quality and effective Security Gating Process by way of strong governance on assessment teams
    • Verify and approve Firewall, Internet access, VPN access request , conduct proper security Architecture checks and zoning implementation
    • Conduct periodic Master calendar activity for All applications ,Perimeter and External facing Ips
    • Review and audit vulnerable critical assets  timely
    • Periodic governance of Supporting vendors  and support Internal/ External audits
    • ESIM security management
    • Provide business centric KPI, Dashboard and Reports.

 

Core Competencies, Knowledge, Experience
    • 8 to 12 years’ experience in IT & security with a minimum of at least 3 years in vulnerability assessment, application security and risk management.

 

Must have technical / professional qualifications
    • Bachelor’s degree in Computer Science, Engineering in Electronics, Cyber Security or related field; Master’s degree will be an added advantage.
    • CCNA, CISM, CEH & CISSP certification is an additional advantage.

Vodafone Idea Limited (formerly Idea Cellular Limited)
An Aditya Birla Group & Vodafone partnership


Related Jobs