EY Isfm Iso 27001 Specialist in Haryana, India

Title: Isfm Iso 27001 Specialist

Location: IN-Haryana-Gurgaon

Job Number: IND00952

Essential Functions of the Job:

• Build and maintain local relationships within different geographic locations

• Work with stakeholders to produce ISMS status reports regularly

• Work with stakeholders to document corrective actions, track remediation and report progress

• Work closely with local area contacts to identify information security control processes and associated ownership

• Understand and be able to implement all aspects of the ISO 27001:2013 standard

• Create and maintain ISMS documentation specific to each implementation

• Work with local area contacts and management for risk treatment and acceptance

Analytical/Decision Making Responsibilities

• Demonstrated integrity and judgment within a professional environment

• Ability to appropriately balance firm security needs with business impact & benefit

• Flexibility to adjust to multiple demands, shifting priorities, ambiguity and rapid change

• Ability to deal efficiently with escalations and difficult situations/people under pressure

Supervision Responsibilities:

• Support the training and development of staff to develop their skills and maintains state-of-the-art knowledge in information security

• Provide feedback to others which supports the improvement of their performance

• Direct the daily progress of work assigned to staff members, report status to management, and manage staff performance



• Advanced degree in related discipline, or equivalent work experience

• One or more professional certificates to supplement formal education


• Five or more years of experience in a significant Information Security risk management function

• 10 or more years of experience in an Information Security or Information Technology

• Exceptional judgment, tact, and decision-making ability

• Outstanding management, interpersonal, communication, organizational, and decision-making skills

• Project Management experience

Certification Requirements:

• Lead ISO 27001 Implementer and/or Lead ISO 27001 Auditor certification

• Should hold one of the following or equivalent certifications: Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor(CISA) Certified Internal Auditor (CIA) , or Global Information Assurance Certification (GIAC) in related area