Information Security Analyst (Business Security Operations)
Mumbai, Maharashtra, India
Job Summary
- As the Information Security Associate within the Business Security Operations (Bus Sec Ops) team, you will be responsible for implementing and maintaining information & cyber security practices across WTW.
- Candidate would be required to gain a high-level of knowledge and understanding of critical technology applications and security standards.
- You will need to take a leadership role in building security testing framework for web-based applications which includes Threat Profiling, DAST, SAST, Security Architecture, and Penetration testing.
- In this role, you are expected to understand the organization’s information & cyber security strategy and standards while working collaboratively with technology teams to implement and maintain sound security practices.
- This role resides in our Information & Cyber Security (ICS) team within Corporate IT.
Responsibilities & Duties
- Build and maintain effective relationship with technology teams and ICS stakeholders
- Foster a culture of information and cyber security best practices though awareness and support
- Stay up to date with the latest application security developments and security trends to continually improve internal processes
- Hold good understanding of Application & Infrastructure testing methodology & support development teams in the remediation of vulnerabilities
- Work with development teams to improve the secure software development lifecycle
- Engage in information security activities to support client/business engagements i.e., incidents, vulnerabilities, development lifecycles, risk management and emerging threats
- Ability to coordinate and execute security testing for applications and cloud environments
- Engage with key stakeholders to support internal and external audit activities to ensure compliance with regulations such as: SOC, FCA, NYDFS, GDPR, HIPAA
- Demonstrate a good understanding of security regulations and data privacy laws
- Support the risk identification & exceptions management processManage and oversee adhoc projects related to maturing information and cyber security controls across the organization
Technical Skills:
- Degree in a relevant Information Technology area preferably with a focus on information security
- Significant experience in managing and patching vulnerabilities across a host of assets
- Expert understanding of all aspects of information security principles, policy and its application in business and technology areas
- Understanding of core cloud security principles
- Knowledge and experience on supporting information security audits
Education Qualification : Degree in a relevant Business or Information Technology area
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Cloud Compliance DAST GDPR HIPAA ICS Pentesting Privacy Risk management SAST SDLC Security strategy SOC Strategy Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs