Scribd Logo
Hochladen

Willkommen bei Scribd!

  • JDs Template

    Hochgeladen von

    Usman Hamid
    50 Ansichten3 Seiten

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    DOCX, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    50 Ansichten3 Seiten

    JDs Template

    Hochgeladen von

    Usman Hamid

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 3

    ISO

    Department: Information Security Operations

    Reports To: CISO

    No of Positions: 01

    Job Summary

    The ISO serves as the process owner for all ongoing activities that serve to provide appropriate access to
    and protect the confidentiality and integrity of customer, employee, and business information in
    compliance with organization policies and standards.

    Duties and Responsibilities

    • Serves as an internal information security consultant to the organization


    • Responsible to implement information security standards with in the organization.
    • Documents security policies and procedures created by the Information Security Committee
    • Provides direct training and oversight to all employees and other third parties, ensuring proper
    information security clearance in accordance with established organizational information
    security policies and procedures
    • Initiates, facilitates, and promotes activities to create information security awareness within the
    organization
    • Perform information security risk assessments and serves as an internal auditor for security
    issues
    • Implements information security policies and procedures for the organization
    • Reviews all system-related security plans throughout the organization's network, acting as a
    liaison to Information Systems
    • Monitors compliance with information security policies and procedures, referring problems to
    the appropriate department manager
    • Coordinates the activities of the Information Security Team.
    • Advises the organization with current information about information security technologies and
    related regulatory issues
    • Monitors the internal control systems to ensure that appropriate access levels are maintained
    • Prepares the disaster recovery plan and business continuity plan
    • Provide training to staff with respect to ISMS standards

    Qualification, Experience and Skills Required

    • Bachelors Degree in Business, Information Management, or a related field; or the equivalent in


    education and work experience.
    Note: Since we don’t have separate position of ISO. Management of LumenSoft nominates Manager HR
    & IT Support to represent/act as ISO in addition.

    CISO
    Department: Information Security Operations

    Reports To: CEO

    No of Positions: 01

    The CISO serves as the process owner for all ongoing activities that serve to provide appropriate access
    to and protect the confidentiality and integrity of customer, employee, and business information in
    compliance with organization policies and standards.

    Duties and Responsibilities

    The Chief Information Security Officer Principal duties will include:

    • Leadership of the Management Security Forum


    • Leadership of the Rolustech steering committee and Incident Response Team
    • Preparation of Management Security Forum security briefs
    • Recording and resolving security incidents
    • Maintenance of the Information Security Management System
    • Establishment and review of the Risk Assessment
    • Selection of controls and risk mitigation
    • Maintenance of the Statement of Applicability
    • Monitoring ongoing compliance with Security standards
    • Establishment and maintenance of contacts with external security resources.
    • Evaluation of changes in asset base and resultant security implications.
    • Consultation and advice on general Information Security issues

    Qualification, Experience and Skills Required

    • Bachelors Degree in Business, Information Management, or a related field; or the equivalent in


    education and work experience.
    • Certifications of ISMS Lead Implementer/ Auditor.

    Note: Since we don’t have separate position of CISO. Management of LumenSoft nominates Associate
    Project Manager - QA to represent/act as CISO in addition.
    Chairperson of ISMS Steering Committee
    Department: Information Security Operations

    Reports To: Board of Directors

    No of Positions: 01

    The CISO serves as the process owner for all ongoing activities that serve to provide appropriate access
    to and protect the confidentiality and integrity of customer, employee, and business information in
    compliance with organization policies and standards.

    Duties and Responsibilities

    • Chair the ISMF meetings and reviews


    • Final authority for approving or not approving decisions
    • Take balanced decisions about information security
    • Bring sense of "Business" to information security

    Note: Since we don’t have separate position of CISO. Management of LumenSoft nominates CEO to
    represent/act as Chairperson of ISMS Steering Committee in addition.

    Das könnte Ihnen auch gefallen