Security Risk and Compliance lead
India
Nokia
As a technology leader across mobile, fixed and cloud networks, our solutions enable a more productive, sustainable and inclusive world.Family Description
Customer Services (CS) covers customer service in different areas such as technical support, account support, operations, maintenance, network design / deployment / integration / transformation, and education. Generates revenue and the increase of customer satisfaction through planning, designing, deploying, integrating, optimising, operating, and maintaining phases.
Subfamily Description
Managed Services (MSE) is responsible for keeping the network running and proposing / conducting network upgrades based on business requirements. Covers technical managing and operating of agreed components of IT and telecommunications services provided to end users of Nokia customers, within contracts agreed with those customers.
· Assessing Driving Open Risk with respect to Audit Observations in the environment
· Driving SRI open observations to closure with Domain/LOB/MSP/OEM owners
· Driving Telecom PT open Observations to closure with Domain/LOB/MSP/OEM owners
· Driving CAG Observations to closure with Domain/LOB/MSP/OEM owners
· Driving DOT open Audit Observations to closure
· Driving discussions with observation owners in the client environment and defining plan of action with closure ETA, provide support & direction, highlighting appropriate stakeholders for seeking necessary intervention in risk closure.
· During SRI Audit, Supporting the Audit team in completing risk assessment audit of the environment and taking handover of identified observations /findings as per released report in terms of GRC follow-ups for closures.
· Conducting NIAM Audit on monthly basis and driving NIAM integration of the pending nodes across LOB/ Domain
· Conducting +2 Admin Audit on monthly basis and ensuring the identified telecom nodes get duly addressed.
· Maintaining the NIAM / +2 Admin data reports for Audit representations
· Maintaining central trackers for all observations for effective monitoring of the risk
· Publishing fortnightly reports to the customer with respect to the progress made
· Conducting Monthly Customer reviews on open observations
· Leading Overall Security Exception Help Desk to manage Security exceptions and deliver process KPI in the environment
· Coordination with Security exception requestor, Domain owners, NLT and NSG to timely close the security exceptions before their expiry
· customer
· Good knowledge of Control framework and Design with respect to ISO/NIST/DOT/BISP
Soft Skills
· Proactive, Problem solving, Analytical reasoning approach with GRC background.
· Ability to work in high intense customer facing environment and drive results.
· Collaborative skills for working in cross functional matrix environment.
· Should be able to lead teams independently and drive KPI outputs.
· Expert on MS-Excel, Power point, MS projects and MS Word
Certification & Experience
· Should have Minimum ISO 27001 implementer and auditor certificate.
· CISSP, ISO 31000 Risk Management Certification.
· ITIL Standard Certified
· Minimum work experience 6-12 years with GRC in Telecom background
· Good understanding of vulnerability management
· Good understanding of Security Incident management
· Good understanding of Information Security policy for Large Telecom Operator/IT background
· Good understanding on Minimum baseline security for telecom nodes
· Must have Experience in control design and measuring operating effectiveness.
· Experience in Technical Risk Management lifecycle,
Come create the technology that helps the world act together
Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work
What we offer
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.
Nokia is committed to inclusion and is an equal opportunity employer
Nokia has received the following recognitions for its commitment to inclusion & equality:
- One of the World’s Most Ethical Companies by Ethisphere
- Gender-Equality Index by Bloomberg
- Workplace Pride Global Benchmark
At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.
Join us and be part of a company where you will feel included and empowered to succeed.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISSP Cloud Compliance ISO 27001 ITIL Monitoring NIST Risk assessment Risk management Vulnerability management
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.