Cyber Security Specialist

Functional Title: Sr. Associate Information Security, Global Security Office, India

Job Summary: This position is an active member of the Global Security Office (GSO), the security organization of Publicis Groupe under Re:Sources, responsible for supporting security management and compliance activities globally to Groupe agencies. This position supports security requirements of Publicis Groupe, its agencies, and ensures the success of business by working collaboratively with internal and external stakeholders. This position also coordinates dependencies across the disciplines and organization to understand and address the ever-changing security landscape and security-related business requirements. This position reports into Manager/Senior Manager Information Security

Responsibilities:

• Work as an individual contributor in Global team to support Global ISO 27001/ISMS program and security risk management process.
• Support and lead implementation of the ISO 27001 standard for new teams, functions and locations in Asia and Europe region.
• Perform Gap analysis, drive control implementation, risk assessments, security audits, documentation, external audits and other activities that are part of ISMS maintenance
• Engage with stakeholders and coordinate with them for external ISO 27001 audit
• Maintain ISO 27001 repositories and tracker
• Perform security risk and compliance assessment for various business solutions and technologies included Cloud computing and other new technologies.
• Lead and maintain agency certifications for TISAX globally including ongoing and new projects
• Contributes to the broad range of global Information security and risk mitigation initiatives and projects as guided by the Leadership of the Global Security Office team.
• Sets and measures security effectiveness inline with services provided by GSO to Groupe agencies.
• Advise business or operational teams on implementation of administrative, physical and technical security controls required for security policy adherence and compliance. Coordinates the implementation of security controls.
• Contributes to continual improvement of Publicis Groupes security program including ISO 27001, IT risk management program and agency certification.
• Support in creation, maintenance and review of security documentation (policies, standards, procedures etc.) for ISO 27001 & TISAX.
• Maintains awareness of the current industry environment that shapes opportunities for improvement in ISMS
• Prepare management reports and dashboard required for the ISMS program and agency certification

Essential Job Requirements:

• Partner with stakeholders to plan, implement, operate and improve various ISO 27001 programs and TISAX
  
• Coordinate with different technology groups for control design and implementation needs
• Maintain a support role in information security control implementation and technology risk mitigation projects. Implement improvement program for security compliance processes.
• Posses essential project management skills to drive ISO 27001 and TISAX implementation projects
• Demonstrate communication skills regarding essential security risk and compliance concepts, processes, and procedures and their impact on IT and business processes.
• Demonstrate interpersonal, presentation, and relationship skills required for supporting the internal and external customers.
• Mandatory language skills (oral, written and listening) : English

Other Job Requirements:

• Good communication and presentation skills
• Ability to work effectively and collaboratively with stakeholders.
• Willingness to work with geographically dispersed teams; may involve working during non-business hours occasionally to accommodate time-zone differences.
• Travel: This position may require travel to office, especially during audits and assessments.

Performance Standards & Expectations

Education & Certifications

• Degree from an accredited University, preferably in Computer Science, Information Systems, or a related field; relevant working IT or security experience considered. Education and experience should also include auditing and/or operational risk management exposure.
• Security certification such as ISO 27001:2022 Lead Implementor, CISSP, CISM, CCSK and CCSP strongly preferred.

Experience

• At least 6 years of IT and / or information security-related experience, including experience in implementation and managing a security program based on ISO 27001 or any other well know security standard or framework.

  Looking to get Placed? Try our Placement Guarantee Plan

  Get Hired
• Familiarity with general information security controls, processes and principles
• Experience in working for an ISMS (ISO 27001) implementation and maintenance program
• Experience in working on TISAX security certification
• Knowledge on cloud technology and security
• Exposure to other standards like PCI DSS, ISO 31000, CIS, CSA CCM

Core Competencies

• Teamwork
• Project management
• Communication
• Results Driven
• Customer Focus
• Relationships
• Adaptability to Change
• Continuous Improvement

Technical Competencies

• Security certification implementation
• Security Audits
• Security Risk Assessments
• Security Documentation
• Knowledge of eGRC Solution (such as OneTrust, Archer, etc.)