Hiring - Sr. Analyst - Application Security @ IRIS Business

IRIS Software Inc. is a professional software services organization that delivers high quality and cost effective solutions to businesses globally. Our customers include Fortune 100 businesses and midsized firms across Financial Services, Life Sciences, Logistics & Distribution and High Tech industries. We leverage best-of-breed technologies and flexible engagement models to deliver value for our customers' businesses.

We are a high growth setup with 1800+ people based out of our offices in India, US and Canada. We are strategic partners to over 25 of the Fortune 100 companies and our consistent strive to achieve the highest levels of customer satisfaction has translated into long-standing relationships and a preferred-partner status with many of our customers. Over the years, more than 90% of our customers have chosen to engage with us for repeat business.

IRIS is a quality and security focused organization. We have been appraised at Level 5 of the CMMI Institute's Capability Maturity Model (CMMI) and have been certified to ISO 9001:2015. Our Information Security Management framework is aligned and certified to ISO 27001:2013 and SOC2 Type II.

For more details visit us at www.irissoftware.com

Job Description

Mandatory Skills:-

1. Conducting VAPT on Company's Network and Websites

2. Responsible for Technical Vulnerability Management.

3. Responsible for configuring and  monitoring SIEM, DLP polices and logs.

4. Coordinating in implementation of ISMS / BCMS through coordination with various departments / personnel.

5. Conducting security Risk assessments for different domains for cross - functional departments.

6. Maintaining internal ISMS activities.

7. Implementing various integrated control frameworks involving compliance requirements including ISO27001, Client mandates in IRIS.

8. Update policies, processes and forms as per the security requirement, related laws and regulations for various departments.

9. Updating internal ISMS documentations.

10. Conducting and taking Information security trainings and ISMS sensitization initiatives.

11. Implementing BCMS through coordination with various departments / personnel.

12. Conducting ISMS audits and driving the audit observations till closure.

1. Bachelor's degree in Computer Science (B. Tech, BE, BCA, or MCA), ISO 27001 :2013 LA Preferred,

2. Experience in SIEM, DLP Monitoring and Configuration.

3. Experience in IT Security and tools (DLP, SIEM, Web Filtering, Anti-Virus), VAPT (like Nesus etc.) and Phishing Tools.

4. Experience in Vulnerability, Risk, Privacy Assessment.

5. Experience in Audits and Assessments preferably covering ISO 27001, SOC 2 Type 2, GDPR, Client Audit and Privacy Regulations (GDPR)

6. Experience in identifying and remediating incidents, threat & vulnerabilities