This Role is primarily responsible for performing risk assessments, third-party reviews, internal audits, information security control, and system review and design.

The successful candidate should have broad information security and risk experience, a high degree of professionalism, a friendly and collaborative demeanor, and strong verbal, written, and organizational skills.

This position typically reports to the Manager of Information Security.

Who are we ?

HID powers the trusted identities of the worlds people, places, and things, allowing people to transact safely, work productively and travel freely.

We are a high-tech software company headquartered in Austin, TX, with over 4,000 worldwide employees.

About HID Global, Chennai :

HID Globals, Flagship R&D Center in Chennai hosts 300 employees in a 48000 square foot space dedicated to delivering innovative product development for customers and provide an excellent platform for scaling our operations in delivering secure access solutions.

Here we deliver cloud-based solutions, web and mobile application development.

The Chennai R&D Center is seen as the subject matter expert and talent pool on the latest cloud technologies, logical and physical access systems, data engineering including AI/ML, cryptographic key management systems, and other mobile-based smart card delivery systems.

HID Global is the trusted source for secure identity solutions for millions of customers and users around the world.

In India, we have two Engineering Centre (Bangalore and Chennai) over 200+ Engineering Staff.

Global Engineering Team is based in Chennai and one of the Business Unit Engineering team is based in Bangalore.

Duties and Responsibilities :

Duties include the following.

Other duties may be assigned.

- Research, collect, and analyze data to perform risk analysis and remediation.

- Perform reviews of Third Parties to identify risks and potential remediation.

- Generate reports and executive summaries of Third-Party assessments.

- Participate in audit functions and perform control effectiveness reviews.

- Act as part of a team responsible for HID Global security architecture.

- Prepare security reports by collecting, analyzing, and summarizing data and trends.

- Review proposed information systems and related technologies.

- Conduct Information Security Internal audits as per the standard & another requirement such as ISO 27001.

- Reports on key metrics and findings.

- Conducts risk assessments on vendors and internal applications.

- Collaborates with development and other functional areas to address vulnerabilities within systems/applications.

- Stay abreast of related emerging technologies and threats.

Education Qualification Or/ Experience :

Education qualifications are B.E, B.Tech.

- Minimum 3-5 years of experience in information security risk and compliance.

- Familiarity with ISO 27001, NIST CSF, SOC 2, PCI DSS , CSA STAR and related risk assessment Methodologies.

- Knowledge of enterprise network and systems architecture concepts and technologies, including but not limited to enterprise directory, enterprise integration architecture, and Identity & access management.

- Thorough knowledge and understanding of security risk assessment on all information systems such as people, process, technology, and information processing facilities.

- Knowledge on cloud security.

- Prepare risk assessment report and risk treatment plan.

- Conduct Information security awareness session to end users/ middle management.

- Certifications such as ISO27001 / CISA /CISM /CRISC/ AWS Security Cloud Certifications will be added advantage.

- Should be a self-starter and lead risk analysis in assigned areas with minimum supervision.

- Strong technical background in technical systems/environments.

- Strong written and verbal communication skills.

- Ability to develop good working relationships and excellent interpersonal skills.

- Capable of working independently and as part of a team.