Information Security

4 weeks ago

Bengaluru, India LeadSquared Full time

Location: Bangalore

Reports to: Director - IT

Position Overview: As an Information Security Compliance Manager at LeadSquared, you will play a critical role in overseeing and maintaining our information security compliance program. The ideal candidate will have at least 8 years of hands-on experience in managing compliance with ISO 27001, SOC 2, and HIPAA standards. You will be responsible for implementing, monitoring, and continuously improving our information security policies, procedures, and controls to safeguard our data assets, customer information, and meet regulatory requirements.

Key Responsibilities:
1. Compliance Management: Develop and maintain a comprehensive understanding of ISO 27001, SOC 2, and HIPAA requirements. Lead efforts to ensure the organization‘s compliance with these standards and regulations. Conduct regular audits and assessments to identify compliance gaps and areas for improvement. Create compliance dashboards and report the compliance health to Top Management on a monthly basis Good understanding of regulatory requirements like GDPR, CCPA, DPDP etc.

2. Policy and Procedure Development: Create, update, and maintain information security policies, procedures, and guidelines to align with best practices and regulatory requirements. Communicate and enforce policies and procedures across the organization.

3. Risk Assessment and Management: Perform risk assessments to identify potential security risks and vulnerabilities. Develop and implement risk mitigation strategies and action plans. Have a good understanding of OWASP top 10 cloud security, web application security, and DevOps security risks Have a good understanding on SDLC workflow and its infosec requirements from and ISO27001 standard perspective

4. Training and Awareness: Provide training and awareness programs to educate employees about information security best practices and compliance requirements.

5. Incident Response and Management: Develop and maintain an incident response plan to address security incidents and breaches promptly. Coordinate and lead incident response efforts when necessary.

6. Vendor and Third-Party Risk Management: Evaluate the security practices of third-party vendors and partners to ensure they meet compliance requirements. Manage vendor risk assessments and due diligence processes.

7. Reporting and Documentation: Prepare and submit compliance reports to regulatory authorities and internal stakeholders as applicable Maintain comprehensive documentation of security controls and compliance activities.

8. Continuous Improvement: Stay up-to-date with industry trends, emerging threats, and regulatory changes. Drive continuous improvement initiatives to enhance the security posture and compliance framework of the organization.

9. Handling Customer’s InfoSec queries: Respond to customer RFIs, assessments and infosec related queries Streamline the RFI response process and response ETA Engage in client meetings and discussions related to Information Security at LeadSquared and provide the relevant inputs and solutions as applicable

10. Compliance Automation: Experience in working with GRC tools like Archer, Audit Board, Hyperproof etc to automate and streamline audit activities, risk assessment, employee awareness and vendor management

Qualifications:
Bachelor‘s degree in information security, Computer Science, or a related field.
A master‘s degree in cyber security is a plus.
At least 8 years of relevant experience in information security compliance management.
Experience in auditing and risk assessment of SDLC and DevOps functions is a must Strong expertise in ISO 27001 , SOC 2 , and HIPAA standards.
Professional certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
Must have worked on Risk assessment and audits of AWS infrastructure for a product/solution
Excellent communication and leadership skills.
Must have conducted at least 1 SoC2 Type1 and Type 2 internal audits and represented the organization in SoC2, HIPAA external audits.
Experience in responding to customer RFIs on infosec is a must Strong analytical and problem-solving abilities.
Ability to work collaboratively with cross-functional teams.

  • Information Security

    4 days ago

    Bengaluru, India Thoucentric Full time

    **About us**: Thoucentric is a niche management consulting firm focused on helping organizations overcome business challenges, maximize growth & overall performance through effective problem solving, efficient people, process and technology solutioning, end to end execution and management. We have been certified **Great Place to Work **by AIM ** **and have...

  • Information Security

    3 weeks ago

    Bengaluru, India Navi Full time

    About Navi Navi is one of the fastest-growing financial services companies in India providing Personal & Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navi‘s mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is...

  • Information Security

    3 weeks ago

    Bengaluru, India Virtusa Full time

    Information Security - CREQ188808 Description P1,C3,STSQualifications:5+ years of relevant professional work experience in Information Security and Technology Risk ManagementDeep knowledge of compliance, risk management and internal IT control frameworksBroad understanding of information security disciplines with emphasis on vulnerability management, data...

  • Information Security

    3 weeks ago

    Bengaluru, India Virtusa Full time

    Information Security - CREQ188808 Description P1,C3,STS Qualifications: 5+ years of relevant professional work experience in Information Security and Technology Risk Management Deep knowledge of compliance, risk management and internal IT control frameworks Broad understanding of information security disciplines with emphasis on vulnerability management,...

  • Information Security

    2 months ago

    Bengaluru, India Nityo Infotech Full time

    Business Intelligence , Databases , Linux , Management , Network Security , SQL , Troubleshooting , Windows , Web Development , A , AWS , Ability , Active , Active Directory , Advantage , Ansible , Application , Application Development , Applications , Architecture , Automation , Awareness , Azure , Bamboo , Based , Business , Business Intelligence , CI , Cd...

  • Information Security Officer

    2 months ago

    Bengaluru, India Volvo Group Full time

    India **Position Description** **Position Description** **Mission and context** Information security is a new department within Group Security. We are responsible for the 2nd level of cyber security defense within the Volvo group. We are a growing global team of engaged and experienced people. We hope you will join us in creating an even more secure...

  • Information Security Architect

    3 weeks ago

    Bengaluru, India Mouser Electronics Full time

    JOB DESCRIPTIONTitle: Information Security ArchitectLocation: IndiaThe Information Security Architect provides detailed recommendations for architecture and technology and reports on all matters relevant to information security. The Information Security Architect works with infrastructure teams, support teams, and development teams to develop and implement...

  • Information Security Architect

    1 week ago

    Bengaluru, India Mouser Electronics Full time

    JOB DESCRIPTIONTitle: Information Security ArchitectLocation: IndiaThe Information Security Architect provides detailed recommendations for architecture and technology and reports on all matters relevant to information security. The Information Security Architect works with infrastructure teams, support teams, and development teams to develop and implement...

  • Information Security Specalist

    1 week ago

    Bengaluru, India Bosch Group Full time

    Company Description Robert Bosch Engineering and Business Solutions Private Limited **Job Description**: **Primary Responsibilities and Accountability**: - Adherence to information security & privacy related concept of the business unit - Support the business owner in ensuring the business operations are as per the security expectations set - corporate,...

  • Information Security Manager

    3 weeks ago

    Bengaluru, India Alliance University Full time

    Job DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security

    2 months ago

    Bengaluru, India Nityo Infotech Full time

    Business Intelligence , Databases , Linux , Management , Network Security , SQL , Troubleshooting , Windows , Web Development , A , AWS , Ability , Active , Active Directory , Advantage , Ansible , Application , Application Development , Applications , Architecture , Automation , Awareness , Azure , Bamboo , Based , Business , Business Intelligence , CI , Cd...

  • Information Security

    1 week ago

    Bengaluru, India Nityo Infotech Full time

    Business Intelligence , Databases , Linux , Management , Network Security , SQL , Troubleshooting , Windows , Web Development , A , AWS , Ability , Active , Active Directory , Advantage , Ansible , Application , Application Development , Applications , Architecture , Automation , Awareness , Azure , Bamboo , Based , Business , Business Intelligence , CI , Cd...

  • Information Security Manager

    3 weeks ago

    Bengaluru, India Alliance University Full time

    Job DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security Manager

    3 weeks ago

    Bengaluru, India Alliance University Full time

    Job DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security Manager

    1 week ago

    Bengaluru, India Alliance University Full time

    Job DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security Manager

    1 week ago

    Bengaluru, India Alliance University Full time

    Job DescriptionAs the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security Manager

    1 week ago

    Bengaluru, India Alliance University Full time

    Job Description As the Information Security Manager, you will be responsible for developing, implementing, and managing the organization's information security program. You will work closely with internal stakeholders to identify security risks, establish policies and procedures, and implement controls to mitigate potential threats. Additionally, you will...

  • Information Security Architect

    3 weeks ago

    Bengaluru, India Mouser Electronics Full time

    JOB DESCRIPTION Title: Information Security Architect  Location: India  The Information Security Architect provides detailed recommendations for architecture and technology and reports on all matters relevant to information security. The Information Security Architect works with infrastructure teams, support teams, and development teams to develop...

  • Information Security Architect

    1 week ago

    Bengaluru, India Mouser Electronics Full time

    JOB DESCRIPTION Title: Information Security Architect  Location: India  The Information Security Architect provides detailed recommendations for architecture and technology and reports on all matters relevant to information security. The Information Security Architect works with infrastructure teams, support teams, and development teams to develop...

  • Spl'st, Information Security

    1 month ago

    Bengaluru, India IBST Full time

    **- Spl'st, Information Security - Banking - Financial services sector **Department***: All Departments **Open Positions***: 10 **Skills Required**: Information security, Banking, Financial services sector, **Role***: - Spl'st, Information Security - Banking - Financial services sector **Location***: Bangalore, Karnataka, India **Years Of Exp***: 6 to...