Senior Information Security Technical Program Manager: Technical Security Audit and Risk Management
2 weeks ago
The opportunity
Unity understands the significance of a solid Security Program. The Security Program is key to maintaining customer confidence in our products and is the pathway to a well-tuned, functional Information Security Management System, Compliance and Program. This will be a chance to work on real security problems in a fast-paced high growth business. The person in this role will be at the helm of critical security risk and compliance projects with major impact across the company. You will help Unity to obtain and maintain applicable security certifications. You will have input into the overall security strategy to guide our security policy and architecture in addition to driving security awareness and compliance across the business units.
What you'll be doing
- Driving Technical audits and implementation of audit and control framework to monitor production environments for potential system integrity, cyber-risk exposure and control weaknesses
- Perform security gap analysis and help define specific/technical remediation measures.
- End-to-end project and program management : Manage audit and/or remediation projects. Produce high-quality deliverables, project material and audit documentation that are suitable for engineering teams, external stakeholders and auditors.
- Guide and work with engineering and DevOps as they execute on risk remediation and novel solutions Work day-to-day with technical Security engineers and collaborate with them for driving project progress and resolving blockers
- Be responsible for reporting on these projects to senior leadership. Effectively communicate not only with peers, engineers , devops, business development stakeholders, but also with VP and execs.
- Operate and lead initiatives within a distributed team and collaborate with colleagues both local and remote, cross functionally and within your department. Stay updated on the latest industry trends and technologies to keep our services cutting-edge.
What we're looking for
- Experience driving compliance or audit engagements (eg SOX or SOC 2 or PCI or ISO Experience conducting risk assessment on products and applications (in-house and/or third-party) to inculcate better security using NIST or Similar compliance frameworks..
- Experience working on cloud service providers such as AWS/GCP/AZURE, and knowledge of cloud services and infrastructure
- Experience in Vulnerability management ( Qualys/ORCA etc), Security Operations ( Logging and monitoring, SIEM and SOAR tools ) and Infrastructure Security.
- Familiarty with SAST/ DAST tools
- Exposure to distributed systems development and/or an understanding of container and orchestration technologies such as Docker, Kubernetes or Nomad.
- Strong understanding of software development best practices and design patterns, a security and quality first mentality and approach (Secure Software development Lifecycle SSDLC)
- Experience with one or more of the following: threat modeling, security reviews, vulnerability management, penetration testing, secure software development
- Excellent project management skills and communication and collaboration abilities, adept at working with teams across various disciplines. Experience with process mapping (preferably on MS Visio / Lucidchart or equivalent). Excellent skills with excel and powerpoint.
- Excellent communication skills and experience collaborating with cross functional teams, driving for alignment on key decisions, effective communication with project participants and leadership
You might also have
- Professional certifications in security, privacy risk management, and audit areas are a plus, such as PMP, CISA, CISM, CISSP, or CIPT.
- Experience with Unity, Unreal, or other game engines
- Experience working within an Agile environment (SCRUM/Kanban/XP) and leading work within teams
Additional information
- Relocation support is not available for this position.
- International relocation support is not available for this position.
- Work visa/immigration sponsorship is not available for this position.
Life at Unity
Unity [NYSE: U] is the world's leading platform of tools for creators to build and grow real-time games, apps, and experiences across multiple platforms. Creators, ranging from game developers to artists, architects, automotive designers, infrastructure experts, filmmakers, and more, use Unity to bring their imaginations to life across multiple platforms, from mobile, PC, and console, to spatial computing.
As of the fourth quarter of 2023, more than 69% of the top 1,000 mobile games are made with Unity as derived from a blended number of the top 1,000 games in the Google Play Store and iOS App Store. In 2023, Made with Unity applications had an average of 3.7 billion downloads per month. For more information, please visit
Unity is an equal opportunity employer committed to fostering an inclusive, innovative environment with the best employees. Therefore, we provide employment opportunities without regard to age, race, color, ancestry, national origin, disability, gender, or any other protected status in accordance with applicable law. If there are preparations or accommodations we can make to help ensure you have a comfortable and positive interview experience, please fill out this form to let us know.
This position requires the incumbent to have a sufficient knowledge of English to have professional verbal and written exchanges in this language since the performance of the duties related to this position requires frequent and regular communication with colleagues and partners located worldwide and whose common language is English. Headhunters and recruitment agencies may not submit resumes/CVs through this website or directly to managers. Unity does not accept unsolicited headhunter and agency resumes. Unity will not pay fees to any third-party agency or company that does not have a signed agreement with Unity.
Your privacy is important to us. Please take a moment to review our Prospect and Applicant Privacy Policies. Should you have any concerns about your privacy, please contact us at .
#SEN
-
Bengaluru, Karnataka, India Unity Full timeRole Description The opportunity Unity understands the significance of a solid Security Program. The Security Program is key to maintaining customer confidence in our products and is the pathway to a well-tuned, functional Information Security Management System, Compliance and Program. This will be a chance to work on real security problems in a...
-
Bengaluru, Karnataka, India Unity Full timeRole DescriptionThe opportunityUnity understands the significance of a solid Security Program. The Security Program is key to maintaining customer confidence in our products and is the pathway to a well-tuned, functional Information Security Management System, Compliance and Program. This will be a chance to work on real security problems in a fast-paced...
-
Information Security Risk
2 weeks ago
Bengaluru, Karnataka, India Cepheid Full timeThe Information Security Risk & Controls Architect is responsible for managing and maintaining Cepheid's Information Security Risk Management Processes. This role will help define the approach, tools, and processes, which assess and protects the organization's most sensitive and critical information assets.:***: This position is part of the Information...
-
Security Risk Management
2 weeks ago
Bengaluru, Karnataka, India Rubrik Full timeJob Summary Information Security - Who We Are The Information Security (InfoSec) organization advances the overall state of security at Rubrik through critical initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect...
-
Lead- Information security, Risk and Compliance
2 weeks ago
Bengaluru, Karnataka, India Whatfix Full timePosition Summary: The Security Compliance Specialist is responsible for managing all compliance related activities within the Whatfix platform and supporting other global compliance related initiatives. Compliance activities will include coordinating internal and external assessments/audits, contributing to policy and standards updates, developing...
-
Information Security Risk Analyst
2 weeks ago
Bengaluru, Karnataka, India Take-Two Interactive Software Full timeAbout the PositionJob Title:Information Security Risk AnalystWho We Are:Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially successful entertainment...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India Alliance University Full timeJob Description As the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India Alliance University Full timeJob DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...
-
Bengaluru, Karnataka, India Paradise Placement Consultancy Full timeJob Description:Job Title:Infosec LeadDepartment:ITLevel/DesignationManager/Sr. ManagerPosition Type:Full TimeJob OverviewThis role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security standards andrelevance with industry...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India AMEX Full timeJoin Team Amex and Lead the Way TogetherAt American Express, we believe in providing the right support so that both individuals and businesses can progress in remarkable ways. When you become part of Team Amex, you join a global and diverse community dedicated to backing our customers, communities, and each other. Through our programs, benefits, and flexible...
-
Information Security Risk Analyst
1 week ago
Bengaluru, Karnataka, India Take-Two Interactive Full timeJob Title: Information Security Risk AnalystWho We Are:Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially successful entertainment experiences,...
-
Director - Information Security
2 weeks ago
Bengaluru, Karnataka, India Yo HR Consultancy Full timeRole : Director - Information Security Experience : 5-8 yearsLocation : BangaloreMust have : Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale. Prior experience in running or managing a SOC Prior experience with global compliances across US, EU and UAE ISO 27001 PCI DSSJob Description : Skills : A...
-
Business Information Security Officer
2 weeks ago
Bengaluru, Karnataka, India Unisys Full timeWhat success looks like in this role: Responsible for the development, adoption, compliance, and governance of the security strategy, roadmap, and policies that are aligned to the organization's overall security objectives within Corporate IT (CIT). The BISO is a senior leader who is the single point of contact for information security related matters...
-
Bengaluru, Karnataka, India Paradise Placement Consultancy Full timeJob Description: Job Title: Infosec Lead Department: IT Level/Designation Manager/Sr. Manager Position Type: Full Time Job Overview This role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security standards...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India Morae Full timePOSITION OVERVIEWThisInformation Security GRC Expert – Associate Managercontributes to Morae success byimplementing, and maintaining people, process and technology-oriented policies, procedures, andcontrols to ensure ongoing security and compliance of Morae's innovative technology solutions and information assets.As a part of highly skilled Information...
-
Director - Information Security
2 weeks ago
Bengaluru, Karnataka, India Skill Connect HR Consulting Full timeDirector - Information SecurityRequired Experience : - 8 YearsSalary Range : 25 LPA - 40 LPALocation : Bangalore, Karnataka, IndiaIndustries & Domains : Enterprise/ SaaSSkills & Expertise : ISO 27001 PCI DSSPreferred Certifications : CISSP CCSP CISMMust to have : Experience working in a fastpaced B2B startup environment with an engineering team that has seen...
-
Information Security Risk Assessor
2 weeks ago
Bengaluru, Karnataka, India eliterecruitments Full timeInformation Security Risk Assessor (ISRA):We are looking for an Information Security Risk Assessor (ISRA) to join our client's team. In this role, you will play a crucial part in securing our projects by design through the delivery of Information Security Assurance Plans based on ISO Risk Management principles.Location - Pune/BangaloreExperience - 4 To 10...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India Intraedge Technologies Ltd. Full timeAmex: Event Manager Information Security in Bengaluru (Upendra)As an Event Manager in Information Security at Amex, you will play a crucial role in ensuring that security remains a top priority for the business, partners, and customers. In a world where cyber-attacks are on the rise and compliance is a must, your responsibility will be to stay ahead of...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India American Express Full timeYou Lead the Way. We've Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career...
-
Information Security Engineer
2 weeks ago
Bengaluru, Karnataka, India Jwalpa Tech Services Full timeDirect Responsibilities : Prioritize and schedule security control assessments performed by application security team. Use the collected information from different security assessments following application security criticality/profile (GSF, ASCR controls) to remediate noncompliance. Use the collected information from different security tests/audits...