- Good understanding of, and experience with Information Risk Management, IT Security and Compliance and Security Controls and Audit.
- Understanding of internal and external IT security standards, SOX, PCI, SOC2/1, ISO27001 standards and relevant legal compliance aspects
Required Technical and Professional Expertise
- Good understanding of cloud security requirements and third-party control assurance.
- Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups.
- Overall knowledge & experience in various security domains /technologies like – Infrastructure/Network security, IAM, Application Security, DLP, End Pt security, Web security, Cloud Security
Preferred Technical And Professional Expertise
- Knowledge of Data Security Standards: PCI DSS, Privacy Principles
- Driving Platform / Application security and compliance
- Ability to foresee and identify mitigation strategies for Risks & Analytical and problem solving skills