'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Director - Information Security - Internet/eCommerce
BangaloreDirector : Information Security
Location : Bengaluru
- This job requires you to be an IC as well as a leader who will be involved in all infosec aspects both for our banking clients and internal.
- Your role would involve and not limited to the following Implement, manage, and maintain information security related compliances such as ISO 27001, GDPR, SOC 2 & 3, PCIDSS, etc.
- Conduct periodic risk assessments and internal audits Maintain compliance related documents across all scoped functions; Provide continuous support to the teams in their compliance journey
- Perform ongoing refactoring of implemented controls Lead compliance audits and close of non-conformances and suggestions Liaise closely with the IT and Engineering team to implement best in class information/data security/privacy controls Identify opportunities to adopt innovative technologies and best practices
- Be the information security SPOC for our external banking clients for cyber security related queries and closure.
- You should be able to prepare detailed data flow diagrams and documents for both clients and internal Face ISO27001, PCIDSS audits conducted third parties and banks
- Build a team of security officers to dedicatedly work for each of our banking clients for maintaining compliance and supporting banks queries.
What you will need 12+ years of experience in implementation and maintenance of information security related compliances
- Excellent understanding of IT and SDLC processes Excellent communication skills; Should be able to communicate complex and dry IT topics in a fun way Very good understanding of cloud architecture/technologies like kubernetes, docker, infrastructure as a code etc is a plus Theoretical understanding of cloud platforms like AWS and GCP is a must.
- You should be able to communicate efficiently with devops teams Exposure to ISO 27001 and PCI DSS is a must Should be proficient conducting internal audits Understanding of security engineering ( VAPT, devsecops etc ) and tools ( like Palo alto ) is required.
- Should be able to liase with security engineering teams, vendors ,incident response teams for smooth implementation of compliances.
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}