Information Security Manager

Information Security ManagerMishipayCompetitive basic salary and bonusBangaloreAbout the company:MishiPay is an international, leading checkout technology company that empowers shoppers to checkout instore using either self-checkout via their own smartphones, or using MishiPay's industry leading, minimalist, low cap-ex kiosks. We are creating an enjoyable and convenient in-store shopping experience for leading retailers globally.  MishiPay now also runs Mobile POS, Click and Collect and Cash registers, so that merchants, who initially start with our self-checkout, can eventually run their whole store checkout process on MishiPay. With our technology, retailers have proven reductions in cost, due to requiring fewer cashiers, a marked increase in sales due to improved basket sizes, higher frequency of shopper visits and reduction in abandoned baskets, and in addition, all our retailers can access rich and priceless data about their customers. This enables a much better understanding of the customer journey in their bricks and mortar stores.The Role We are looking for a talented Information Security expert to own and develop an inhouse Information Security function in a fast-growing, consumer tech scale-up. You’ll define, implement and enforce our security protocols, profiles and procedures for our leading-edge software applications and other aspects such as software integration with our customer platforms. About You - Essential RequirementsYou MUST have experience in achieving or maintaining ISO and PCI DSS compliance, as well as SOCType2 audits and using vulnerability management tools such as Nessus, Qualys or Rapid7. You will have also been through vendor assessment processes where you'll have checked vendors for security testing or compliance.This role will suit you if you’re experienced in the above in a SME or startup, or consultancy, where you'll have dealt with complexities around payments and data protection etc. We are not looking for someone who is super senior but someone with the above experience, who can develop into a senior management position.About the Role: Your responsibilities will include: The development and execution of our Security strategy at an international level, from product design and development, through to infrastructure, integration, data flows and all other MishiPay related processes and information assets. Developing and maintaining policy documents and procedure, e.g., disaster recovery and business continuity, data compliance, physical security, change management.  Dealing with all security queries, from identification through to resolution. You’ll conduct constant risk investigations, assessment and analysis of all MishiPay processes, identifying risk areas and associated action plans to mitigate liabilities quickly and efficiently. Regular liaison with internal stakeholders. You’ll translate technical concepts and security issues into easily understandable business risks that can be addressed by all members of the MishiPay team. Continual liaison with external parties, specifically our retail customer and partner teams, to quickly alleviate any concerns or incidents that may occur. You’ll deliver recommendations and risk/security solutions clearly and concisely to technical and non-technical stakeholders. Constant adherence to industry standards, constantly innovating and keeping up to date with trends, insights and new solutions and processes that will improve and enhance our security protocols. Some general IT Management responsibilities, depending on your level of experience. As well as the above essential experience, you'll also have ideally haveAt least 5 years hands-on experience of a similar role within a SME or startup, or consultancy, and be happy to initially become our Information Security champion within the business. You’ll have demonstrable ability to allow you to develop and deliver a high-performing Information Security function. You’ll also need: Significant understanding of current information security standards and best practices. A structured & detailed approach to incident and crisis management in a complex environment. A notable and demonstrable understanding of technical information security (eg. access management, network security, integration security, data recovery).An innovative, analytical approach, coupled with an ability to see the bigger picture, & deep-dive, when needed. A capacity to understand the security challenges that we face as we grow and deal with more retailers - and consumers. You’ll be passionate about developing our security culture into a core area of our business. Experience of managing or mentoring a small, talented team and an innate drive to learn and develop to ensure we are always at the top of current security standards. A related degree or equivalent. Experience of working to tight deadlines, managing projects and budgets effectively and successfully.Any experience in online and/or digital payment platforms would be significantly advantageous.  Why MishiPay?You’ll work with an ambitious and inspirational multi-cultural team, based in our Bangalore offices, who are redefining the retail industry globally. We offer a tight-knit, collaborative and exciting work environment, coupled with the opportunity to see the apps you develop put to use in some of the world’s largest retailers. We also offer:BonusesPotential optionsUnlimited holidaysHybrid Working (36 days WFH a year)Monthly Employee AwardsA small monthly training budgetCompany eventsFree lunch in BangaloreMacBookCareer progression and a chance to work with some of the brightest minds in tech