Service Manager - Infrastructure Security Compliance Manager

Company Description

Tesco Bengaluru: We are a multi-disciplinary team creating a sustainable competitive advantage for Tesco by standardising processes, delivering cost savings, enabling agility, providing cutting-edge technological solutions and empowering our colleagues to do ever more for our customers. With cross-functional expertise in Global Business Services and Retail Technology & Engineering, a wide network of teams and strong governance we reduce complexity thereby offering high quality services for our customers. Tesco Bengaluru, established in 2004 to enable standardisation and build centralised capabilities and competencies, makes the experience better for our millions of customers worldwide and simpler for over 4,40,000 colleagues.

Job Description

Role Summary: This role is crucial to make sure Infrastructure meets Business continuity and regulatory requirements and always stays secure. You will work with different Service and Operations leaders; Security; and other Technology teams for being successful in this role. You will be responsible for owning end to end compliance to security controls and audit requirements like Layer Defense Model (LDM) & Internal Control for Financial Reporting (ICFR) etc. which are shared by security time to time. You will be front ending the assessment and audits; working closely with wider infrastructure teams to ensure we are always compliant with the controls and providing sufficient evidence in required reporting requirements. You will also ensure that Infrastructure components are always patched regularly; and vulnerabilities maintained within the governing control limits as advised by Security.

Your responsibilities:
The Security Compliance Manager shall have a proven track record of successful managing and mitigating IT Security challenging across complex Technology landscapes. Other responsibilities include the following:

• Maintain; execute and communicate the organization’s information security policy and procedures.
• Directs and oversees the assessment; selection; implementation; and maintenance of information security tools and technologies.
• Evaluate new or updated industry regulations to ensure continued compliance.
• Enforces information security controls and investigates/responds to information security incidents.
• Participates in business continuity planning (BCP) activities when required by regulation or senior leadership.
• Prepares reports; business cases; and presentations on security risk; controls; the status of compliance efforts; etc.
• Acts as liaison between IT Infra and other functions (e.g.; Legal; HR; Vendor management; Stores) regarding risk management events or security incidents.

Qualifications

• Infrastructure security certification will be desirable.
• Other Certifications preferred are like: CISSP; CISM; CRISC; CISA; CEH.
• Experience operating in a multi-platform Technology organisation with regular and consistent exposure to complex Technology.
• Demonstrate strong leadership skills driving a global virtual resolution team with confidence and authority.
•  
• Knowledge and understanding of ITIL processes - (ITIL foundation certificate / ITIL Managers Certificate desirable)
• Extensive practical working experience of managing complex and demanding IT Security architecture upgrade and support initiatives within budget and agreed Service Acceptance standards.

Additional Information

Important Notice: 

On behalf of Tesco Bengaluru, we must caution all job seekers and educational institutions that Tesco Bengaluru does not authorise any third parties to release employment offers or conduct recruitment drives via a third party. Hence, beware of inauthentic and fraudulent job offers or recruitment drives from any individuals or websites purporting to represent Tesco. Further, Tesco Bengaluru does not charge any fee or other emoluments for any reason (including without limitation, visa fees) or seek compensation from educational institutions to participate in recruitment events. 

Accordingly, please check the authenticity of any such offers before acting on them and where acted upon, you do so at your own risk. Tesco Bengaluru shall neither be responsible for honouring or making good the promises made by fraudulent third parties, nor for any monetary or any other loss incurred by the aggrieved individual or educational institution. 

In the event that you come across any fraudulent activities in the name of Tesco Bengaluru, please feel free report the incident at recruitment_compliance_india@tesco.com