Background

By joining dentsu you will not only be joining a great company but one that achieves its social objectives. Recently we have been named in the top 30 employers for working families by workingfamilies.org.uk, based on flexible work and benefits. We have also achieved our target of being powered by 100% renewable energy and been awarded an A- rating for sustainability by CDP.

Inclusion & Diversity

We value the strength diversity brings to our business and are working hard to build a more inclusive workplace through partnerships with Stonewall, Business Disability Forum and Business in the Community’s race and gender equality campaigns. We are happy to discuss all flexible and agile approaches to working for all our roles – we can’t promise we will be able to offer you everything you want or need but we do promise to discuss it with you openly and honestly. If you have any reasonable adjustment needs arising from a disability or medical condition to fully participate in the recruitment process, please discuss this with the recruiter who contacts you.

What you’ll get from us

Dentsu is a fantastic place to work with many great benefits on offer including 25 days’ annual holiday, Cycle to Work Scheme, and get your Birthday Day off! Not only is it an incredibly fun place to work but as part of a multinational organisation there are many opportunities to advance your career within the wider business once you have proven yourself

About Dentsu

Dentsu International Limited is headquartered in London and operates in 145 countries worldwide with more than 40,000 dedicated specialists. Dentsu is Innovating the Way Brands Are Built for its clients through its best-in-class expertise and capabilities in media, digital and creative communications services. Dentsu consists of a number of market leading brands including Carat, Dentsu Media, Isobar, iProspect, Poster scope, Vizeum, Amplifi, D2D and PSLive.

Job Specification

• Job Title: Security Governance & Risk Analyst
• Department: DGS – Security
• Hiring Manager: DGS Lead
• Location: India (Chennai, TN or Thane, MH)

Role Overview

The purpose of this role is to support key security initiatives within the Dentsu Global Services (DGS).  This role will be responsible for ensuring ethics and compliance are maintained, to ensure successful delivery across service lines and globally.

Led by the DGS Security Lead, our DGS Security team are responsible for driving global security initiatives across DGS across service lines, markets and brands. 

Responsibilities 

• Having 3 to 5 years of experience in Information Security Domain.
• Communicate and support adherence of Dentsu Security policy and standards within the DGS. Work with global teams to ensure policy, standards, and projects consider regional nuances.
• Support application of the global security risk management framework across the DGS, performing periodic security risk assessments with service lines, regions, markets and brands.
• Support the completion of thorough assessments of in-scope systems, applications, processes and locations to establish information security risks and control gaps.
• Evaluate, review, and prepare updates to the risk register and follow information and cyber risk remediations to closure.
• Support the implementation and maintenance of local ISMS activities, including gap analysis and evidence collection.
• Support Technology, integration teams to ensure M&A security activities are appropriately managed.
• Support supplier due-diligence activities of key third parties in DGS
• Support brands, service lines and markets in client due diligence, RFPs and audits.
• Provide support for security incidents, including assessing the scope and impact of incidents and following appropriate policies and procedures.
• Support the Cyber Operations team with monitoring and tracking the remediation of technical vulnerabilities in the region.
• Assist stakeholders with BCP/DR test planning, execution, training, and maintenance projects.
• Engage with Internal Assurance and Internal Audit teams to ensure regional audits findings are tracked and managed.
• Driving a culture of understanding and awareness around Information Security risks throughout the region, markets and service lines.
• Build relationships and partner with business and IT departments.
• Assist in developing and contributing to regional management reporting and presentations.
• of understanding and awareness around Information Security risks throughout the region, markets and service lines.
• Build relationships and partner with business and IT departments.
• Assist in developing and contributing to DGS management reporting and presentations.

Job Specification

Job Title: Security Compliance & Resilience Lead

Department: DGS – Security

Hiring Manager: DGS Lead

Location: India

Role Overview

The purpose of this role is to support key security initiatives within the Dentsu Global Services (DGS).  This role will be responsible for ensuring governance and risk are maintained, to ensure successful delivery across DGS.

Led by the DGS Security Lead, our DGS Security team are responsible for driving global security initiatives across DGS across service lines, markets, and brands.  This role will report into the DGS Security Lead and will lead all initiatives for governance,  and risk and resilience.

Responsibilities 

• Build relationships and partner with business and IT departments across wider dentsu and DGS
• Agent for change for embedding the dentsu Security operating model into DGS
• Collaborate with global teams to ensure policy, standards, and projects consider regional and capability nuances. Communicate policies and standards to the DGS user base.
• Drive compliance to the global security risk management framework across the DGS, performing periodic security risk assessments within DGS scope of work.
• Lead the completion of thorough assessments of in-scope systems, applications, processes, and locations to establish information security risks and control gaps.
• Lead the review of all DGS risks and prepare updates to the global risk register
• Lead supplier due-diligence activities of key third parties in DGS
• Drive and support resilience alignment to the dentsu global resilience programme.
• Manage the relationship with business stakeholders for all BCP/DR test planning, execution, training, and maintenance projects.
• Partner with Internal Assurance and Internal Audit teams to ensure DGS audits findings are tracked and managed.
• Driving a culture of understanding and awareness around Information Security risks throughout DGS
• Assist in developing and contributing to DGS management reporting and presentations
• Champion understanding and awareness around Information Security risks throughout DGS

Candidate Profile

• Experience of working in Information Security governance and risk role
• Excellent organisation and time management skills.
• Able to handle multiple deadlines, and to effectively perform during high pressure or stressful situations.
• Experience producing security documentation and other technical analysis reports
• Experience working in a team-oriented, collaborative environment.
• Achieved or working towards an information security qualification (CISSP, CISM, CISA, CRISC, ISO27001 Lead Auditor/Implementor) (desirable)
• Experience of security compliance initiatives within an enterprise technology environment such as NIST CSF, CSA, PCI DSS, Cyber Essentials
• Experience operating in a matrixed organisation to meet requirements of diverse stakeholders.
• Track record of supporting information security in a diverse, fast-paced enterprise environment.
• Appreciation of network architecture, protocols, and principles (desirable)
• Working knowledge of global data protection legislation
• Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel
• Stakeholder management and interpersonal skills at both a technical and non-technical level
• Diligent and thorough approach to problem solving
• Interest in their own personal development within security
• Understanding of emerging methodologies, technologies, architectures, and philosophies in the Cyber/Information Security portfolio.
• Comfortable with managing uncertainty, ambiguity, and change to make decisions and recommendations