1. Access & Security Management
- Define user roles (Admin, Employee, Guest) with least-privilege principle.
- Use multi-factor authentication (MFA) for critical systems.
- Regularly review and revoke access for resigned/terminated employees.
- Enforce strong password policies (length, complexity, expiry).
2. Data Protection & Privacy
- Store sensitive data in encrypted form (at rest and in transit).
- Restrict access to confidential files based on job role.
- Comply with data privacy laws (GDPR, IT Act India, HIPAA if applicable).
- Maintain backup policy (daily/weekly backups, stored off-site/cloud).
3. Asset & Resource Management
- Maintain an IT Asset Register (laptops, desktops, servers, mobiles).
- Tag assets with unique IDs and assign to users officially.
- Prohibit personal software installation without IT approval.
- Enforce proper disposal policy (wipe data before e-waste recycling).
4. Network & System Usage
- Allow only authorized devices on corporate network.
- Secure Wi-Fi with enterprise-grade encryption (WPA3).
- Use firewalls, antivirus, intrusion detection systems.
- Restrict USB/external drives unless approved.
5. Compliance & Monitoring
- Conduct regular audits (internal & external).
- Deploy activity logging & monitoring for servers and critical systems.
- Ensure software license compliance (no pirated/unauthorized apps).
- Have an incident response plan for cyberattacks, outages, or breaches.
6. Employee Guidelines
- Use corporate IT systems only for official purposes.
- Prohibit unauthorized file sharing, torrents, or gaming on office systems.
- Mandatory cybersecurity training for all staff.
- Follow remote work security rules (VPN, secured Wi-Fi, no public hotspots).
Website Management – Rules & Regulations1. Content & Branding
- All content must follow company branding guidelines (logos, colors, fonts).
- Regularly update news, policies, and announcements.
- Ensure copyright compliance (no plagiarized text, images, or videos).
7. Security
- Website must use SSL/TLS (HTTPS).
- Apply firewall & DDoS protection.
- Keep CMS, plugins, and themes up to date.
- Conduct regular vulnerability scans & penetration testing.
8. User Data & Privacy
- Collect only necessary data (forms, registrations).
- Provide a clear Privacy Policy & Terms of Use page.
- Ensure compliance with GDPR/IT data protection laws.
- Store collected data securely, with role-based access.
9. Performance & Uptime
- Monitor uptime (99.9% SLA) with alerts for downtime.
- Optimize for speed & mobile responsiveness.
- Use CDN (Content Delivery Network) for global access.
- Regular backup of website & databases.
10. Access Control
- Only authorized IT/web admins can make changes.
- Maintain staging environment before live deployment.
- Keep an audit trail of changes (who made what update).
11. Legal & Compliance
- Follow IT & cyber regulations (India: CERT-In guidelines).
- Display mandatory company details (CIN, registered address if applicable).
- Ensure accessibility compliance (WCAG for differently-abled users).
- Education : Diploma CSE Group, Gender: Male
Job Types: Full-time, Permanent
Pay: ₹204,000.00 - ₹264,000.00 per year
Benefits:
- Provident Fund
Work Location: In person