Job Description
Summary:
The Information Security Business Analyst will be a member of the Information Security team and will work to improve and sustain a secure way of working within company. NXP wants to protect its data and information from leaking and has a responsibility to carry out a business risk analysis. You translate customer requirements, customer expectations and other desired changes into concrete security and risk solutions, you analyze and assess processes, you identify possible improvements, and you give advice based on your analyses. Your work is used to inform audit, compliance, risk and business continuity processes.
Job responsibilities:
- Collect, aggregate, and analyze data from self-inspections, external and internal audits, and security incident reports.
- Identify and investigate anomalies, trends, and areas of concern within the security data.
- Perform root cause analysis to determine the underlying issues contributing to security risks and compliance gaps.
- Identify opportunities to enhance the security assurance program's processes, tools, and methodologies.
- Partner closely with cross-functional teams including physical security, and risk teams to ensure a comprehensive approach.
- Engage with business leaders, security teams, and operational personnel to understand their security concerns and requirements.
Job qualification:
- Strong expertise in risk analysis and Information Security controls with 8+ years of Industry experience.
- Good familiarity with ISO27001, SIG, SOC2-type2 and NIST CSF standards
- Strong verbal and written communication skills, with English as the main language
- Self-starter with the ability to work with a great degree of autonomy
- Willingness to work with flexible working hours
- Relevant knowledge of semiconductor process technology production processes and generic IT processes is an advantage
More information about NXP in India...
#LI-7013
