Behaviors and Competencies
The Manager must demonstrate mature behaviors including:
• Strong written and verbal International communication skills, with a proven ability to communicate with technical staff, as well as project teams
• Keeping pace with standards and technologies related to security and compliance, especially in the area of national personal data protection
• Exceptional consensus building skill with an ability to drive consensus across different international teams
Education and Training
Essential
• BE or MS or MCA Computers Science or Information Technology
Desirable
• M. Tech Computers Science or Information Technology
Skills
• IT Security
• Risk management
• Personal Data Protection
• Applications design, development & delivery
• Collaboration/Teamwork
• Communications (Written and Oral)
• Interpersonal Skills
Knowledge
The Manager should have in-depth knowledge and experience of the following:
• Expertise in applying Information Security Management principles and standards in areas such as threats and vulnerabilities, risk assessment and mitigation, security policy and security management process
• Expertise in ensuring compliance with personal data protection legislation at a national level
• Expertise in Cloud Security Assessment and Security Audits of Cloud Environment
• Understand application architecture and how security fits into each component in areas such as:
• Data flow
• Identity and Access management (user and administrator level)
• Operational support process
• Data protection (backup, archiving, disaster recovery)
• Understanding the general IT security principles
• Understanding the project excellence and software development lifecycle
• Understanding client IT architectural landscape globally and at a regional level (Desirable)
• Understanding IPO policies and being able to direct project teams to guidelines that apply to their application (Desirable)
Experience and Professional Certification
Essential
• 6-10 years of experience in general IT management, security, and data protection
Desirable
• IRCA registered ISO 27001 Lead Auditor (Information Security Management System)
• Data privacy professional (IAPP certification)
• Certified CSA STAR Auditor
• CISA (Certified Information Security Auditor)
• CISSP (Certified Information Systems Security Professional)
Work location: Andover, MA