Description
Cognizant is always looking for top talent. We are searching for candidates to fill future needs within the business. This job posting represents potential future employment opportunities with Cognizant. Although the position is not currently available, we want to provide you with the opportunity to express your interest in future employment opportunities with Cognizant. If a job opportunity that you may be qualified for becomes available in the future, we will notify you. At that time you can determine whether you would like to apply for the specific open position. Thank you for your interest in Cognizant career opportunities.

We're hiring!

At Cognizant we have an ideal opportunity for you to be part of one of the largest companies in the digital sector worldwide. A Great Place To Work where we look for people who contribute new ideas, experiencing a dynamic and growing environment. At Cognizant we promote an inclusive culture, where we value different perspectives providing career growth and development opportunities. #WelcomeToCognizant!

We have an exciting opportunity for an exceptional individual to work supporting one of our clients as a

What you'll do:

Security Governance

§ Manage and implement security Governance, Risk and Compliance (GRC) for our wide variety of client delivery engagements within the region, including banking, insurance, mining, telco and public sectors.

§ Engage in driving compliance against Business Information Security (BIS) and Corporate Security policies /standards

§ Observe and apply regional and international cyber security and privacy laws, frameworks and standards such as ISO 27001, NIST-CSF, GDPR, Japan APPI, BAC, TBA.

§ Work with the internal stakeholders such as Delivery Leaders, Business Information Security Officers (BISO) and affiliated Centre of Excellence (CoE) leaders to ensure organisational practices align with business objectives, compliance to standards and evolving threat landscape.

Security Risk and Control Management

§ Engage with variety of stakeholders: business leaders, auditors, customer security officers, legal, HR, and IT teams to understand security requirements and risk scenarios.

§ Apply end-to-end risk management principles guided by business context and risk appetite. Identify, assess and respond to risks.

§ Develop security management and data protection plan for key accounts: identify assets & threat vectors. Define mitigations and control framework.

§ Conduct periodic risk and control assessments of our adherence to obligations and security management plan. Provide implementation plans to close gaps.

Security Operations and Program Management

§ Manage third party or client audit or security assessment activities such as ISO 27001, SOC report and PCI-DSS. Plan audit scope and schedule, and coordinate with various corporate functions to collect/produce evidences.

§ Assist delivery team to review Technical Solution Designs to apply Secure-by-Design and Secure SDLC processes to ensure IT products and services are foundationally secure in accordance to risk appetite.

§ Coordinate corporate incident management response and support investigations within a strict timeframe. Liaise with customers and external parties.

§ Develop Security Training and Awareness materials, and conduct or facilitate awareness sessions.

Preferred experience:

§ Must have a Bachelor's degree or above in a related field or equivalent experience

§ Must have relevant security certifications such as CISA, CISSP, CRISC or equivalent

§ Must have experience in managing internal Information Security functions for a highly regulated industry

§ 10+ years of Cyber Security experience

§ 5+ years of leadership and management experience

§ Experience in attaining certifications or attestations such as ISO 27001, SOC report, PCI, etc.

§ Experience in Project/Program Leadership and Management

§ Experience with Security Infrastructure Design Engineering or Architecture and have acquired Subject Matter Expert (SME) level knowledge in at least three out of these areas:

o Endpoint Protection

o OnPrem/Cloud Infrastructure Security

o Network Security / Firewall management

o Data Protection

o Security Operations Forensics Investigations and Response

o Identity Access Management

o Secure SDLC

o GRC

§ Excellent stakeholder engagement skills

§ Excellent presentation and communications skills; ability to convey complex security risks and their control mitigations in a concise and business-relevant manager

§ Ability to plan tactically and strategically; deliver outcome with a sense of urgency with attention to detail

§ Demonstrate pragmatism by recommending risk mitigation that balances cost and business value.

§ Strong collaboration skills and willingness to be a team player, working as one team to solve problems by incorporating input from various sources

§ Willing to travel (10%)

Why Cognizant?

Improve your career in one of the largest and fastest growing IT services providers worldwide

Receive ongoing support and funding with training and development plans

Have a highly competitive benefits and salary package

Get the opportunity to work for leading global companies

We are committed to respecting human rights and build a better future by helping your minds and the environment

We invest in people and their wellbeing.

We create conditions for everyone to thrive. We do not discriminate based on race, religion, color, sex, age, disability, nationality, sexual orientation, gender identity or expression, or for any other reason covered.

At Cognizant we believe than our culture make us stronger!

Join us now!

#BeCognizant #IntuitionEngineered

Igualdad de Empleo y Política de Acción Afirmativa:

Cognizant es un empleador que ofrece igualdad de oportunidades. Todos los solicitantes calificados recibirán consideración para el empleo sin distinción de sexo, identidad de género, orientación sexual, raza, color, religión, origen nacional, discapacidad, estado de veterano protegido, edad o cualquier otra característica protegida por la ley.