Manager – IT Security, IT-TPRM
Genpact
5 - 10 years
Mumbai
Posted: 3/5/2025
Job Description
Responsibilities
Develop and maintain comprehensive IT security policies and procedures aligned with industry standards (NIST SP 800-53, ISO/IEC 27001).
Conduct regular IT security risk assessments to identify vulnerabilities, threats, and gaps in the infrastructure, systems, and networks.
Review controls for both on-premise (Linux and Windows) and cloud infrastructure security (AWS, Azure, Google Cloud).
Manage security configurations and controls for cloud services, ensuring compliance with industry best practices (CIS benchmarks, NIST standards).
Evaluate user account management practices, including Role-Based Access Control (RBAC) and Privileged Access Management (PAM), to ensure secure access controls.
Manage data protection and incident response measures to safeguard sensitive information and effectively address security incidents and breaches.
Oversee IT controls for backup, access management, Active Directory security, and cloud security compliance.
Develop strategies and implement control measures to mitigate identified risks and vulnerabilities.
Oversee the creation and implementation of risk management plans to address IT security risks.
Ensure ongoing compliance with data security regulations by governing the implementation of compliance controls.
Oversee patch management processes and monitor security agent performance to ensure proper functionality and security measures.
Develop and deliver security awareness programs on IT controls and Compliance and emerging threats
Oversee business continuity planning (BCP) and disaster recovery (DR) processes to ensure minimal downtime in case of security incidents.
Generate comprehensive reports summarizing security assessments, audit findings, vulnerabilities, and recommended improvements for senior management, and present monthly and quarterly reports to the client.
Provide expert guidance to senior leadership on risk-related decisions and prioritize security initiatives across the organization.
Minimum Qualifications
Graduate in IT Technology, Cybersecurity or related domain.
Masters degree in Cybersecurity, Risk Management, or Business Administration is preferred.
Relevant experience in IT Infrastructure, information security and GRC roles.
Experience in managing on-premise and cloud infrastructure security in large-scale environments.
Strong experience in performing security risk assessments and implementing security controls in medium to large-scale IT environments
Relevant certifications would be preferrable (AWS Certified security, Microsoft Certified: Azure Security, Engineer, Google Professional Cloud Security Engineer).
Certifications in security governance and risk management (CRISC, CISSP, CISM, CISA, ITIL, CCSP, CCSK) are preferred
Preferred Qualifications
Extensive knowledge of NIST, ITIL, and ISO 27001 standards for infrastructure security.
Proficient in cloud security architectures, tools, and best practices (e.g., encryption, identity management, and vulnerability management in cloud).
Experience with GRC tools such as RSA Archer, MetricStream, or ServiceNow GRC
Strong leadership and management skills with experience leading teams and managing projects.
Excellent communication skills with the ability to present complex technical concepts to non-technical stakeholders.
Ability to work in a fast-paced environment, handling multiple projects and priorities simultaneously
About Company
Genpact is a global professional services firm that offers a wide range of digital transformation services and solutions. With a presence in over 30 countries, Genpact leverages its deep domain expertise in operations and analytics to help businesses transform their operations, improve efficiency, and enhance customer experience. The company combines digital technology, data science, and operational excellence to deliver business outcomes across various industries, including banking, insurance, manufacturing, and healthcare. Founded in 1997 as a subsidiary of GE, Genpact has grown into an independent, NYSE-listed company with a diverse workforce of over 90,000 employees globally.
Services you might be interested in
One-Shot Campaign
Reach out to ideal employees in one shot!
The intelligent campaign for reaching out to the ideal audience to whom you can ask for help (guidance or referral).