Lead Cyber security Risk
Gurgaon, HR, IN
Job Description
Role Title: Lead Cyber security Risk
Department: Digital
Base Location: Gurgaon
Work Mode: Onsite
Travel Required: On Requirement Basis
JOB PURPOSE
An Incident and Cyber Risk Lead is responsible for overseeing an organization's response to security incidents and managing cyber risks. Their primary goal is to minimize the impact of incidents and protect the organization's assets, reputation, and customers.
KEY RESPONSIBILITIES
•Developing and maintaining comprehensive incident response plans.
•Conducting thorough investigations into security incidents to identify root causes and determine the scope of impact.
•Coordinating incident response teams, including IT, security, legal, and public relations departments.
•Communicating effectively with stakeholders, including senior management, employees, and external parties, about incident status and mitigation efforts.
•Understanding of digital forensic for root cause analysis.
•Experience of developing forensic log checklist for Application/infra.
•Conducting post-incident reviews to identify lessons learned and improve future response efforts.
•Identifying, assessing, and prioritizing cyber risks based on likelihood and impact.
•Developing and implementing strategies to mitigate cyber risks, such as security controls, policies, and procedures.
•Continuously monitoring the cyber risk landscape and adjusting risk management strategies as needed.
•Identifying and addressing vulnerabilities in systems, applications, and networks.
•Gathering and analyzing threat intelligence to stay informed about emerging threats and trends.
•Ensuring compliance with relevant security regulations and standards as per organization.
•Conducting regular security audits and assessments to identify vulnerabilities and gaps in security controls.
•Supporting the organization in achieving relevant security certifications and accreditations.
•Providing training to employees on incident response procedures and best practices.
SKILLS AND KNOWLEDGE
Educational • Any graduate and above
Desired Experience • 10 Year’s (Relevant should be 5 Year’s)
Skill Set Required • An Incident and Cyber Risk Lead requires a blend of technical expertise, strategic thinking, and strong interpersonal skills to effectively manage incidents and mitigate cyber risks.
•Understanding of security frameworks like NIST Cybersecurity Framework, CIS Controls, and ISO 27001
•Familiarity with incident response tools and platforms.
•Ability to lead and coordinate incident response teams
•Effective communication skills, both verbal and written, to interact with technical and non-technical stakeholders
•Reporting/Dashboard as per business/compliance requirement.
At IndiGo, we believe in the innate strength of an energetic, diverse, and inclusive workforce, where the viewpoints and life experiences of our employees help us foster strong connections with all our customers. Our diversity equity and inclusion efforts are designed to attract, nurture, and advance the lives of our employees and customers irrespective of their – but not limited to - gender, race, color, religion, caste, creed, ethnicity, origin, language, social and economic status, sexual orientation, differently-abled status, marital status, nationality, age, family status, and maternity status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance Incident response ISO 27001 Monitoring NIST Risk management Threat intelligence Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.