More jobs:
Job Description & How to Apply Below
- Assistant Vice President (GRC Head)-Infosec Team
Location
- Gurgaon
Work Model- 5 days from Office
Company Description
Nykaa is a digitally native, consumer-tech company that offers a wide range of beauty, personal care and fashion products. Since its inception in 2012, Nykaa has disrupted the beauty retail market in India and captured the hearts of millions of customers. Besides offering engaging and educational content, we have diversified our offerings through other online platforms like Nykaa Fashion, Nykaa Man, and Superstore.
Key Words - NIST, Cert-In, ITGC Audit, Info Sec Risk Assessment, ISO 27001 implementation
Key Responsibilities
Maintain a robust GRC & Data Protection program that aligns with organizational goals and objectives.
Developing and implementing Info Sec policies, procedures, and standards
To assess the security posture of the organization by using Cyber-Security Framework such as NIST
Ensuring that information security risks are identified, assessed, and managed appropriately, and that appropriate controls are in place to mitigate these risks.
Establishing and maintaining relationships with stakeholders across the organization, including senior leadership, business units, and other key stakeholders, to promote information security best practices and awareness.
Leading the information security awareness and training programs for employees to ensure that they understand their roles and responsibilities in maintaining the security of information assets.
Ensuring that the organization is compliant with relevant laws, regulations, and standards related to information security, such as IT Act, Cert-In, PCI, etc
Lead the implementation of ISO 27001 Information Security Management System.
Govern the third-party risk management program, ensuring comprehensive assessment, monitoring, and mitigation strategies to safeguard the organization
Set governance rigor including regular updates for management, publishing dashboards including metrics for monitoring effectiveness of the organization's information security program
Qualification/Skill
Graduate in Computer Science, Information Security
Relevant certifications (e.g., CISSP, CISM, CISA) are a plus.
9+ years in Information Security with minimum 5 years of experience in GRC
Experience in managing vendor risk management program
Strong understanding of information security principles, risk management, and compliance requirements
Experience with industry frameworks and standards (ISO 27001, NIST, etc.).
Excellent communication and interpersonal skills, with the ability to collaborate with cross-functional teams.
Demonstrated ability to lead and drive change within an organization.
Strong analytical and problem-solving skills.
Ability to handle confidential information
Ethical, with the ability to remain impartial and report all noncompliance
Organizational skills with attention to detail
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×