Chief Cybersecurity Architect

Company Overview:

iServeU Technology is Asia's leading full-stack financial infrastructure company, providing innovative customer experiences for payment acquiring, issuing, accounts, lending, withdrawal, deposit, remittance, insurance, and customer KYC. Our switching infrastructure is architected on the latest technology stack, fully micro-services enabled, distributed, and cloud-native, reducing infra-costs by approximately 80%.

Headquartered in Bhubaneswar, Odisha, with offices in Delhi, Bangalore, Mumbai, and Dubai, we have over 500 employees, with 350 software engineers trained in building digital banking and payment processing products. We are an ASP (Application Service Provider) with NPCI and a certified partner of the NPCI Partner Program.

Job Summary:

We are seeking a Chief Cybersecurity Architect to ensure the confidentiality, integrity, and availability of our information assets. This role involves designing and implementing secure architectures, monitoring security incidents, conducting vulnerability assessments, and managing access controls. The successful candidate will have a deep understanding of information security principles, technologies, and best practices within the financial industry.

Key Responsibilities:

• Cybersecurity Architecture and Design: Collaborate with development and infrastructure teams to design and implement secure architectures for applications, networks, and systems, conducting security reviews and assessments to identify vulnerabilities and recommend controls.
• Cybersecurity Operations: Monitor and respond to security incidents, conduct investigations, and perform forensic analysis when necessary, managing and maintaining security tools and systems such as IDS/IPS, firewalls, SIEM, and antivirus software.
• Vulnerability Management: Perform regular vulnerability assessments and penetration testing on systems, networks, and applications to identify weaknesses and recommend remediation strategies, tracking and managing vulnerabilities, and working with relevant teams to ensure timely patching and mitigation.
• Access Control and Identity Management: Oversee the organization's identity and access management program, including user provisioning, access controls, and authentication mechanisms, developing and enforcing access policies, conducting periodic access reviews, and implementing strong authentication methods such as MFA.
• Cybersecurity Awareness and Training: Develop and deliver cybersecurity awareness programs and training sessions to educate employees about information security best practices, policies, and procedures, fostering a culture of security awareness and ensuring compliance with regulatory requirements.
• Incident Response and Disaster Recovery: Develop and maintain incident response plans and coordinate with internal teams and external stakeholders during security incidents, participating in business continuity planning and testing activities to ensure effective disaster recovery capabilities.
• Compliance and Risk Management: Stay updated with relevant industry regulations and standards such as PCI-DSS, GDPR, and ISO 27001, conducting risk assessments and assisting in developing risk mitigation strategies, collaborating with auditors during security audits, and ensuring compliance with applicable regulations.
• Security Monitoring and Reporting: Establish and maintain security monitoring systems to detect and respond to security events, preparing regular reports on security metrics, incidents, and trends to provide visibility to stakeholders and management.

  Compensation Package:

  The estimated salary for this position is ₹1,200,000 - ₹1,800,000 per annum, depending on experience and qualifications. Benefits include health insurance, retirement savings plan, paid time off, and opportunities for professional growth and development.