APCFSS - Chief Information Security Officer

The A.P. Centre for Financial Systems and Services (APCFSS), Vijayawada, a Section 8 Company of the Government of Andhra Pradesh, is a key technical arm of the Government and manages the Comprehensive Financial Management System (CFMS), a SAP-HANA based platform covering the financial transactions of all the departments and corporations of the Government of A.P. Besides managing the CFMS, APCFSS designs, develops, deploys and maintains mission critical e-Governance Applications and provides Advisory/Consulting Services to various departments and agencies of the GoAP. APCFSS operates in a complex, multi-stakeholder and fast paced environment and its technology-driven-services portfolio has been envisaged to make a critical contribution to the Governance and Public Service Delivery space in A.P. APCFSS is looking for highly dynamic & energetic manager to work with the Secretaries to the Government, CEO, APCFSS in high impact roles in the Government of Andhra Pradesh. Job Purpose : The role holder is responsible for managing the overall information and cyber security strategy and its implementation across the organisation by creating the security best practices that will account for the end-to-end lifecycle of information security operations, including : a. Evaluating the IT threat landscape b. Devising policy and controls to reduce risk c. Leading auditing and compliance initiatives for the Cyber Security Business Delivery, driving security strategy, delivery, business and operations enabling enterprises security and improving their overall posture. 1. Manage advanced threats and provide support to fix security breaches and data leakage 2. Comply with security related regulatory and legal requirements 3. Establish necessary partnership with external vendors and security experts 4. Bringing to the notice of Board/IT sub-committee of the Board about the vulnerabilities and cyber security risk, the APCFSS is exposed to. 5. As member secretary of Information Security and/or related committee(s), if any, may ensure inter alia, current/emerging cyber threats to APCFSS and the APCFSS preparedness in these aspects are invariably discussed in such committee(s). 6. Managing and monitoring SOC and drive cyber security related projects. 7. Maintaining and update a threat landscape for the organization on a regular basis. 8. Represent APCFSS in meetings, workshops, conferences and Any other tasks, as assigned Measures Of Success : 1. IS requirements are identified and addressed in a timely manner. 2. IS responsibilities are effectively communicated to all role holders. 3. Risk mitigation measures are appropriate and in line with global best for the post : 1. To create, maintain and disseminate information security strategy, plans and policies to ensure high information assurance within the APCFSS and meet legal, statutory and regulatory requirements in Information Security. 2. At least 50% of the APCFSS resources, drawn from within the existing team are fully equipped to work on Security framework and act as System Internal Auditors. 3. Developed Security information Health Dashboard for all the Applications in APCFSS and enable access to all the senior management team for monitoring. 4. Building a strong network of connections who can support collaboration and provide valuable feedback on security processes. 5. To obtain top management approval on IS security plan, budget, resources and provide ongoing support for Information Security activities. 6. To ensure that, when exceptions/ deviations/ non-adherence to the IS Security are proposed by the Application Owner, the risk assessment process is completed, and appropriate recommendations are put up to CEO. 7. To define security violations and support investigative processes. 8. To brief Top Management on information security initiatives undertaken, information security status across the organization, compliance against Information Security Policies and regulatory requirements. 9. To direct Information Security Incident Response Management. 10. To oversee the development of Information Security Awareness training programmes and promote security culture in the Bank. 11. To stay informed about global best practices and latest developments in the field of information security including technology, management practices and regulatory requirements. 12. To represent the APCFSS in the area of information security at industry standards committee, technical conferences and regulatory bodies. Required Candidate profile : 1. Result-oriented leader, with demonstrated technology leadership experience in Enterprise wide solutions and large IT complex projects and operations. Knowledge of and experience in SAP and/or other ERP platforms including open technology based enterprise solutions. 2. Comfortable working in a highly complex, multi stakeholder environment to deliver results under challenging timelines. 3. Candidates are expected to possess not only technical / Cyber Security skills but also entrepreneurial skills in engaging on issues, working with teams, and managing their own time. Equally important, they should possess personal understanding and skills to effectively engage with the state government administrative system. 4. Candidates should also keep themselves constantly updated about the emerging developments in Technology sector and ideas within their areas of ERP / Software Development cycle. Experience in Government, Government owned entities like NISG, NIC and CGG etc., or international developmental in Fintech / EdTech etc is an advantage. 5. An excellent communicator with advanced proficiency in English. Ability to understand and converse in Telugu will be distinct advantage Qualification : 1. MCA /M.Tech./MBA (Technology Management) or related disciplines from a tier-I/premier institution 2. Post qualification relevant experience in the IT sector (IT Services and/or Product Development) 3. At least 5 to 10 years experience in a technology-leadership position for medium to large sized organization in the IT industry. 4. Certified Information Security Officer Application Process : 1. The Applications Materials should have the following three documents : a. Curriculum Vitae a. In your CV, please emphasize and elaborate on all the work experiences and academic qualifications that are relevant to the position you are applying to, in some detail, especially those pertaining to the points listed above in the Qualifications section. The CV should mention clearly, Application for the post of Chief Technology Officer b. Presentation : A presentation covering with 30-90-180 day plan of what candidate will achieve as CTO and to present the same, this will allow us to understand if candidate can perform the leadership role of CTO for APCFSS 2. All the above documents in the PDF form (Curriculum Vitae, Application from, and Presentation, in the same order) (ref:hirist.tech)

Location: Vijayawada, IN

Posted Date: 4/24/2024