Lead the efforts and initiatives to drive organization wide processes and systems improvement programs. Help the company achieve various compliance and certifications as per the industry standards.
Work with various stakeholders to develop effective process vision, strategy and maturation.
Liaise with external agencies to coordinate efforts in achieving compliance and certifications
Make process design and development recommendations to standardize, improve, or redesign processes to meet business needs.
Work with other teams to manage alignment between company processes and business objectives so as to optimize business performance.
Coordinate with process owners and technology owners to define technology requirements to support company process strategy and deployment.
Maintain and update documentation of process overviews, details and process flows.
Design and implement new process in order to improve service delivery and client relationship and to ensure cost-effectiveness.
Act as main point-of-contact for addressing process-related enquiries.
Maintain process operational conformance to established quality standards, regulatory & contractual requirements.
Conduct Information Security Assessments and Analysis.
Conduct controls assessment in manual/ automated environment.
Carry out OS/DB/Network reviews
A bachelor's degree in engineering or a master’s or MBA in business, computer science, MIS
1-4 years of related work experience in process and compliance areas.
Excellent written and verbal communication skills
Ability to work effectively in a team
Strong project management, communication (written and verbal) and presentation skills
Preference given to significant experience in relevant technical knowledge:
(a) Internal or operational audits;
(b) SAS 70 engagements
Preferred Certifications – CISA, CISSP, ISO27001 Lead Auditor/Implementer and CISM
Experience in implementing systems and process to achieve compliance for SAS 70/ ISAE 3402/ ISAE 3000/ SSAE 16, SOX audits and third Party Security audits.
Experience in working with external consultants to carry out OS/DB/Network reviews
Exposure to Risk Management and Governance Frameworks/ Systems will be an advantage
Exposure to ERP systems will be added advantage
Exposure to assessment of networks and perimeter architecture from scalability, availability, resilience and security.