Head of Information Security and Compliance
2 weeks ago
Job Description: The job purpose is to lead and implement comprehensive cybersecurity and information security initiatives, including policy development, risk assessment, incident management, and compliance. Responsible for data privacy protection, infrastructure security, vendor management, and fostering a security-conscious culture. Roles and Responsibilities: 1. Security Strategy & Governance: ▪ Define and implement enterprise-wide information security strategies and policies. ▪ Establish security frameworks, ensuring alignment with business objectives. ▪ Oversee security governance, risk, and compliance (GRC) programs. ▪ The CISO will be a member of the Information Security Risk Management Committee which will be responsible for development and implementation of information/cyber security policies, monitoring information security projects/awareness initiatives and reviewing cyber incidents, information systems audit observations, monitoring and mitigation activities. 2. Cybersecurity & Risk Management: ▪ Identify, assess, and mitigate cybersecurity threats and vulnerabilities. ▪ Implement security controls to protect critical assets, applications, and data. ▪ Monitor emerging security threats and ensure proactive risk mitigation. ▪ Application security and Vendor risk assessment standards ▪ Technology risk Assessment 3. Compliance & Regulatory Requirements: ▪ Ensure compliance with industry regulations (ISO 27001, NIST, GDPR, PCI-DSS, etc.). ▪ Work with auditors, regulators, and stakeholders to ensure legal compliance. ▪ Drive security awareness programs across the organization. 4. Incident Response & Crisis Management: ▪ Develop and manage cybersecurity incident response plans. ▪ Lead investigations into security breaches and cyber incidents. ▪ Coordinate disaster recovery and business continuity planning. 5. Technology & Security Architecture: ▪ Oversee security architecture for cloud, network, application, and endpoint security. ▪ Evaluate and implement security tools such as SIEM, IAM, DLP, and endpoint protection. ▪ Work closely with IT and DevOps teams to integrate security best practices. 6. Leadership & Stakeholder Collaboration: ▪ Lead and mentor a team of cybersecurity professionals. ▪ Collaborate with executive leadership to align security strategies with business goals.▪ Report security, risks, and recommendations to senior management and the board. Skills Required ▪ Bachelor’s degree in computer science, Computer Engineering, or a related field. ▪ CISM, CISSP, CISA, CCSP Certified / ISO 27001 Certified Lead Implemented / Lead Auditor ▪ Forensics capability ▪ Project Governance and Project risk management standards including methodology for assessing project risks and reporting project risks to IS Team ▪ A proven ability to manage and monitor program timelines, deliverables, budgets and financial performance Relevant Experience - Experience and exposure to Information/cyber Security in a professional enterprise and minimum 15-18 year's managing Information Security standards in financial services or banking industry with exposure to ISO 27001:2013, COBIT, PCIDSS standards. - Systems Forcepoint, Zscaler, F5, Microsoft Azure WAF, Virsec, CISCO, Sonic Wall, Applications like Apache Tomcat, IIS etc, Business Applications like Core Banking Systems, Securities System, Web and Mobile Applications. - The CISO Responsibilities as per the IRDAI Information and Cyber Security Guidelines.
-
Head of Information Security
3 weeks ago
Pune, India Intangles Full timeJob Description Job Title: Head of Information Security Location: Pune Department: Information Security Job Summary: The Head of Information Security will be responsible for establishing and maintaining the company's information security strategy and programs. This role involves identifying, evaluating, and reporting on information security risks in a manner...
-
Security Compliance Officer
3 weeks ago
Chennai, Tamil Nadu, India, Tamil Nadu SQ1 Security Full timeJob Overview:SQ1 Security is seeking an experienced Cybersecurity and Compliance Expert to lead and drive our initiatives toward achieving SOC 2, ISO 27001, GDPR, and HITRUST certifications.Key Responsibilities:• Develop and Maintain Security Frameworks: Design, implement, and maintain information security policies, procedures, and controls aligned with...
-
Information Security
1 week ago
Bengaluru, India Vedicon Full timeJob Description Company Description Vedicon is a system integrator specializing in Cyber Security, Data Privacy, Risk Management, and Digital Forensics, offering cutting-edge solutions tailored to clients needs. We cater primarily to the Banking, Finance, and Insurance Sectors, as well as Law Enforcement and Intelligence Agencies, Forensic Labs, and...
-
Information Security Lead
4 weeks ago
Mumbai, India 86400 (An Initiative By Mobileware Technologies) Full timeJob Description The Senior Information Security Specialist is responsible for supporting the planning, implementation, monitoring, and enhancement of the organization's information and cyber security controls. The role includes management of ISO27001, PCI-DSS, SOC2 Type2 Certifications practices, supporting privacy practices and ensuring compliance with...
-
Information Security
1 week ago
Bengaluru, Karnataka, India, Karnataka Vedicon Full timeCompany DescriptionVedicon is a system integrator specializing in Cyber Security, Data Privacy, Risk Management, and Digital Forensics, offering cutting-edge solutions tailored to clients' needs. We cater primarily to the Banking, Finance, and Insurance Sectors, as well as Law Enforcement and Intelligence Agencies, Forensic Labs, and Government entities,...
-
Information Security Consultant
6 days ago
India, Faridabad CyberSigma Consulting Services Full timeJob Description We are seeking a motivated and detail-oriented fresher to join our Risk and Compliance team. This is an entry-level opportunity for recent graduates or individuals with 02 years of experience who are passionate about cybersecurity, risk management, and compliance. Key Responsibilities - Assist in conducting internal security assessments and...
-
Corporate Information Security
6 days ago
Chennai, India Chargebee Full timeJob Description Role Purpose The Director / Head of Information Security will lead Chargebee's Corporate Information Security function, working in close partnership with the Enterprise Cyber security (ECS) which manages product and infrastructure security and Corporate IT (which manages employee systems, devices, and operations) teams. This role focuses on...
-
Information Security Compliance Manager
1 week ago
India, Delhi NCR Careers at Tide Full timeABOUT TIDEAt Tide we help SMEs save time (and money) in the running of their businesses by not only offering business accounts and related banking services, but also a comprehensive set of highly usable and connected administrative solutions from invoicing to accounting.Tide is transforming the small business banking market with over 1.6 million members...
-
Information Security Specialist
3 weeks ago
Bengaluru, Karnataka, India, Karnataka Worldwide Flight Services Full timeThe Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization’s security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with...
-
Head of Information Technology
2 weeks ago
Pune, Maharashtra, India, Maharashtra Birlasoft Full timeEmpowered By InnovationBirlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified...
