1. Must have working knowledge of RiskAssessment, Vulnerability Assessment, Penetration Testing,Application Security, Baseline Review, Business Continuity Planning(BCP) and Disaster Recovery (DR).
2. Must be able totranslate information security requirement into business needs andvice versa.
3. Should be able to explain the VAPTfindings to technical and non-technical teams.
4.Should be able to track and coordinate with different teams toclose the risk identified during VAPT exercise.
5. Musthave a solid understanding of Information Security Standards andcompliance like ISO 27001, PCI DSS, OWASP, NIST, SANS andCIS.
6. Must have experience with creating informationsecurity project RFPs.
7. Should be business drivenwith a thorough and proven understanding of client activities andproducts.
8. Responsible to undertake structuredanalysis of vendor proposals for the supply of new InfoSecsolutions in close collaboration with the concerned businessunit(s).
9. Responsible for the execution of projectsto implement selected new InfoSec systems.
10.Responsible for the preparation of a plan for the complete projectlifecycle of assigned projects and for the update of these plansduring that lifecycle.