Information Security Manager

10 hours ago

Trivandrum Kerala India, Thiruvananthapuram Envestnet Full time

Job Title: Manager – Information Security


Job Summary

We are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security will be instrumental in developing, evaluating, and ensuring alignment with cybersecurity controls and policies, maintaining compliance with standards, and embedding security into the organization’s products, services, and technology infrastructure. This position demands a subject matter expert capable of bridging the gap between security policy, risk, and technical implementation. A solid understanding of the latest security frameworks and technologies, including Cloud and AI, is essential to effectively inform and support risk-based decision-making.


Key Responsibilities

Cybersecurity Policy & Governance

  • Develop, review, and maintain cybersecurity policies, standards, and procedures consistent with NIST, Cloud Security Alliance, CIS, and other global security frameworks.
  • Convert identified security risks into policy requirements while ensuring alignment with business objectives.
  • Work with security, engineering, architecture, and operational teams to confirm that policies are technically feasible and provide guidance on implementing and enforcing controls.


Risk Management and Assessments

  • Function as a security specialist, providing advisory support or directly conducting comprehensive risk assessments and control gap analyses across services, products, infrastructure, and applications.
  • Offer recommendations and guidance on effective risk mitigation strategies that align with business objectives and maintain appropriate security standards.
  • Track emerging threats, evolving industry standards, best practices, and regulatory changes in order to proactively advise on necessary updates to policies, controls, or other measures required to strengthen and modernize our risk management posture.


Security Architecture

  • Provide guidance on secure cloud, network architecture, segmentation, and system hardening.
  • Work with engineering teams to monitor and maintain secure configurations and access controls.
  • Lead or advise on security reviews of new technologies and system changes.
  • Carry out Security Architecture Integration by conducting ongoing or targeted architecture reviews to confirm that security is incorporated, integrated, and verified in designs and implemented services.
  • Establish and uphold architectural security principles throughout the technology and services ecosystem.
  • Assess and integrate security tools and technologies to support the enterprise security posture.


Security Assurance and Attestations

  • Maintain documentation and evidence repositories to facilitate internal and external support.
  • Utilize platforms such as SharePoint and Jira to ensure optimal assessment preparedness.
  • Collaborate with control owners to monitor, address, and close findings efficiently.


Awareness & Communication

  • Develop and implement cybersecurity awareness programs designed for both technical and non-technical teams.
  • Prepare concise communications regarding policy changes, risk advisories, and incident notifications.
  • Deliver training sessions to stakeholders on security controls and risk management procedures.


Required Qualifications

  • Bachelor’s / Master’s degree in Information Security, Computer Science, or related field.
  • 12 – 15 years of experience in Information Security with a strong focus on risk management, network security, and security architecture.
  • Hands-on experience in system/network administration (Windows/Linux/Cloud).
  • Deep understanding of frameworks such as ISO 27001, NIST, PCI DSS, and COBIT.
  • Proven experience in drafting and implementing security policies and technical standards.
  • Strong knowledge of identity lifecycle management and access governance.
  • Experience with audit documentation and evidence management tools (e.g., SharePoint, Jira).
  • Excellent communication and stakeholder engagement skills.


Preferred Qualifications

  • Certifications: CISSP, CISM, CISA, CRISC, or equivalent.
  • Experience with GRC platforms and risk assessment methodologies.
  • Familiarity with regulatory standards such as GDPR, CCPA, and other data protection laws.
  • Exposure to cloud platforms (Azure, AWS) and security tools (e.g., Defender, CrowdStrike, Tenable).
  • Knowledge of enterprise architecture frameworks and secure design principles.

  • Senior Data Engineer

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram Appfabs Incorporation Full time

    About the Project:We are engaging with one of customer to build and operationalize their Enterprise Data Platform (EDP). It is a strategic initiative to mature their data and analytics capabilities across the organization. The project involves building out a robust data platform, establishing a new operating model, and delivering foundational data products....

  • Deputy Head-Internal Audit

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram Muthoot Fincorp Ltd. Full time

    KEY RESPONSIBILITIESManagement of Audit universe, audit plans, scope and charterIdentify and maintain a detailed audit universe covering all auditable entities and processes within the organization.Regularly update the audit universe to reflect changes in the organization’s operations, risk landscape, and regulatory requirements.Define and refine audit...

  • Electrical BIM Modeler

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram COMMANDTECH CAD & IT PVT LTD Full time

    Electrical BIM Modeler :We are looking for a driven Electrical BIM Modeler to join our team.Job Description:Familiarity with Autodesk Revit, AutoCAD MEP, Autocad and Navisworks ELEC System Knowledge. In-depth understanding of ELEC systems, including different types of equipment, ductwork, piping, controls, and their interactions within a building's...

  • Sales Development Representative

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram Workplaze Full time

    Job descriptionAbout WorkPlazeWorkplaze: The Future of Digital Services AutomationWorkplaze is the leading Professional Services Automation (PSA) platform, expertly designed for digital agencies and professional services companies. Founded by agency veterans, we built a unified, intelligent solution to transform operations from quote to cash, eliminating...

  • Product Owner

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram CareStack™ - Dental Practice Management Full time

    About UsGood Methods Global Inc is a global health-tech venture engineering CareStackTM - a powerfulpractice management cloud platform for dental practices in the US. CareStackTM empowers largedental groups as an all-in-one solution to increase productivity, minimize costs and improvepatient dental care. Simply put, CareStackTM is rewriting the rules of what...

  • Site Reliability Engineer II

    10 hours ago

    Trivandrum, Kerala, India, Thiruvananthapuram Zafin Full time

    Senior Site Reliability Engineer (SRE II) Own availability, latency, performance, and efficiency for Zafin’s SaaS on Azure. You’ll define and enforce reliability standards, lead high-impact projects, mentor engineers, and eliminate toil at scale. Reports to the Director of SRE.What you’ll doSLIs/SLOs & contracts: Define customer-centric SLIs/SLOs for...

  • Information security manager

    2 weeks ago

    Trivandrum, India Envestnet Full time

    Job Title: Manager – Information Security Job Summary We are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security...

  • Information Security Manager

    2 weeks ago

    Trivandrum, India Envestnet Full time

    Job Title: Manager – Information Security Job Summary We are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security will...

  • Information Security Manager

    2 weeks ago

    Trivandrum, India Envestnet Full time

    Job Title: Manager – Information SecurityJob SummaryWe are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security will be...

  • Information Security Manager

    2 weeks ago

    Trivandrum, India Envestnet Full time

    Job Title: Manager – Information SecurityJob SummaryWe are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security will be...

  • Information Security Manager

    2 weeks ago

    Trivandrum, India Envestnet Full time

    Job Title: Manager – Information Security Job Summary We are seeking an accomplished Information Security professional with extensive experience in cybersecurity best practices, enterprise security architecture, data protection, first-line information security risk management, and conducting security assessments. The Manager – Information Security will...

  • Information Security Consultant

    10 hours ago

    Kochi, Kerala, India, Ernakulam Soffit Infrastructure Services Ltd Full time

    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will...

  • Security Engineer

    3 weeks ago

    india Altered Security Full time

    We are looking for talentedSecurity Engineersto join our team!Altered Security is an information security startup with focus on edtech, hands-on learning and focused security assessments. It has offices in India and Singapore.We are experts in information security training, cyber ranges, online labs and security assessments. We have trained more than 40000+...

  • Senior Resource- Information Security

    10 hours ago

    Thrissur, Kerala, India, Kerala GramPro Business Services Pvt. Ltd. Full time

    NB: "Recruiting for a scheduled commercial bank"Job Title: Senior Resource – Information SecurityMinimum 15 years in BFSI Employment Type: Full-Time Location – Thrissur Job Summary: We are looking for a highly skilled Deputy CISO – Information Security with at least 10 years of experience in BFSI to lead risk management, compliance, and security...

  • Information Security

    2 days ago

    Mumbai, India Snapmint Full time

    Job Description About Snapmint Snapmint is a leading fintech company redefining access to consumer credit in India. With over 10 million customers across 2,200+ cities, our zero-cost EMI platform enables responsible purchases without the need for a credit card across categories like fashion, electronics, and lifestyle. India has over 300 million...

  • Security researcher

    2 weeks ago

    India Altered Security Full time

    We are looking for top Security Researchers (Remote) with demonstrable expertise to join our team of experts! Altered Security is an information security startup with focus on edtech, hands-on learning and focused security assessments. It has offices in India and Singapore. We are experts in information security training, cyber ranges, online labs and...