Infrastructure Cloud Risk Assessment Manager

At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team. To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service. The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature.

About the Role:

We are looking for a skilled professional to join our Information Security Team as an Infrastructure Cloud Risk Assessment Manager. The candidate is expected to have a solid understanding and experience of major cloud-native architectures, expertise in identity and access management, familiarity with various data encryption methods, and knowledge of cloud compliance regulations. You need to ensure availability, reliability, security and performance and resilient architecture to address customer’s/client business challenges and accelerate technology adoption to improve the product services. You need to ensure control on security by designing principles of applications hosted in public cloud (Azure, AWS, GCP, OCI). Technical understanding on zero-trust architecture and micro segmentation along with hands-on experience with SIEM (Security Information and Event Management) tools to proactively monitor, analyse, and respond to security incidents is an important aspect.

Key Responsibilities

Identifying Vulnerabilities: Understanding of cloud architecture review, and virtualization. Conduct cloud security assessments, across but not limited to the following domains:
• Network and Perimeter Security
• Data Protection and Backup Management
• Identity and Access Management
• Log Management and Monitoring

Analysis: Identify and analyse the risks associated. Provide recommendations for the identified findings and develop the road-map.

Implement Security Measures: Develop and implement robust security measures for cloud environments, ensuring the confidentiality, integrity, and availability of data. Contribute in creating and enforcing security policies, procedures, and best practices across the organization.

Reporting: Contribute in creating and enforcing security policies, procedures, and best practices across the organization.

Collaborate: Work closely with cross-functional teams to integrate security controls seamlessly into cloud-based architectures and applications. Collaborate with other IT professionals, including network engineers, developers, and system administrators, to integrate cloud security measures into existing systems and processes.

Qualifications Skills

Educational Qualification: Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent.

Certifications: Relevant certifications such as CISSP, CISM, AWS Certified Security, etc.

Compliance: Assist in securing the IT landscape/ecosystem built on-premises and multi-cloud environment.

Technical Skills: Proficient in cloud security assessment, across all the deployment and service models – IaaS, PaaS, SaaS. Experience with the cloud-native services across major cloud service providers (AWS, GCP, Azure, OCI).

Communication skills: Outstanding communication abilities. Ability to effectively communicate the required recommendations.

About the Business Group

ICICI Bank’s Information Security Group believes in providing services to its customers in the safest and secure manner keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is at the heart of building a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. The Bank also undertakes campaigns to create awareness among customers on security aspects while banking through digital channels. Read more