Search by job, company or skills

A

Information Security Lead

7-10 Years
30 - 40 LPA
Save
  • Posted 12 hours ago
  • Be among the first 10 applicants
Early Applicant
Quick Apply

Job Description

Job Opening: Senior Manager – Information Security

Location: Mumbai  

Experience: 6-10 years

Compensation: 30 Lacs – 40 Lacs (depending on the interview)

About Antal:

Antal International, East Patel Nagar Delhi, is a leading recruitment consultancy having expertise in connecting top talent across IT, Manufacturing and FMCG industries with leading organizations.

About the role:

We are seeking a Senior Manager – Information Security to play a key role in strengthening the organization's cybersecurity and governance framework. You will work closely with cross-functional technology teams to embed security across applications, infrastructure, cloud platforms, and business operations while ensuring compliance with industry regulations and standards. This role offers the opportunity to lead strategic security initiatives, drive cyber resilience, and contribute to building a robust security-first culture within a leading financial services environment.

Key Responsibilities

·      Maintain, implement and periodically review the organization's Information Security policies, standards, procedures and guidelines to ensure alignment with applicable regulatory requirements, PCI DSS, ISO 27001, CERT-In, DPDP and industry best practices.

·      Assist the CISO in developing and enhancing the organization's Information Security governance framework, policies, standards and security processes based on evolving regulatory requirements, emerging cyber threats and business needs.

·      Work closely with Product, Engineering, Application Development, Infrastructure, Cloud and Operations teams to ensure security controls are embedded into technology platforms, applications and operational processes.

·      Review the security architecture of new products, applications, infrastructure and technology initiatives and recommend appropriate security controls based on security-by-design principles.

·      Conduct periodic management reviews of critical security controls including Firewall Rules, Web Application Firewall (WAF), Identity & Access Management (IAM), User Access Management, Privileged Access Management (PAM), Network Security, Endpoint Security and other information security controls, and ensure timely remediation of identified gaps.

·      Conduct technical security assessments of applications, infrastructure and enterprise security controls, identify areas of improvement and drive implementation of corrective actions.

·      Develop, implement and periodically review Information Security aspects of Business Continuity and Cyber Resilience plans to ensure resilience of critical business services.

·      Lead and coordinate enterprise Information Security initiatives and projects including Data Loss Prevention (DLP), Security Information and Event Management (SIEM), Vulnerability Assessment & Penetration Testing (VAPT), Identity & Access Management (IAM), DPDP compliance, Security Automation, Cybersecurity AI and other strategic security programs.

·      Engage and coordinate with external consultants, technology partners and service providers for implementation of information security solutions and ensure successful delivery of security projects.

·      Review security exceptions, risk acceptance requests and compensating controls, ensuring appropriate approvals, documentation and mitigation measures are in place.

·      Support internal and external audits by implementing remediation actions, coordinating closure of observations and strengthening security controls across the organization.

·      Develop security dashboards, governance reports, Key Risk Indicators (KRIs), Key Performance Indicators (KPIs) and management reports for the CISO and senior leadership.

·      Promote security awareness, secure development practices and a strong security culture across the organization.

Required Skills & Expertise

·      6 to 10 years of hands-on experience in Information Security Governance, Information Security Management, Security Architecture or Cyber Security within Banks, Financial Institutions, Payment Aggregators, FinTech organizations or Information Security Consulting firms.

·      Experience implementing Information Security programs aligned with RBI regulations, PCI DSS, ISO 27001, CERT-In directions and DPDP requirements.

·      Experience working with Product Engineering, Infrastructure and Cloud teams to implement security controls across enterprise environments.

·      Experience implementing enterprise security technologies such as DLP, SIEM, IAM/PAM, Vulnerability Management, Security Monitoring, Endpoint Security, Network Security and Cloud Security solutions.

·      Experience managing cross-functional security initiatives and coordinating implementation across multiple technology teams.

Skills we are looking for

  • Information Security Governance
  • Information Security Policy & Standards Management
  • Security Architecture and Secure Design Review
  • Identity & Access Management
  • Network Security and Infrastructure Security
  • Information Security Risk Assessment
  • Security Control Reviews
  • Regulatory Security Requirements (RBI, PCI DSS, ISO 27001, CERT-In, DPDP)
  • Business Continuity and Cyber Resilience
  • Security Metrics, Governance Reporting and Executive Communication
  • Strong stakeholder management and cross-functional collaboration skills

 

 

Qualifications:

·      Bachelor's Degree in Information Security/ Computer Science

·      Certified Information Systems Auditor (CISA)

·      Certified Information Security Manager (CISM)

·      PCI DSS/ ISO 27001 – Lead Auditor or Implementor

 

Relevant Industry

Banking, NBFC, Other Financial Institutions, Payments Industry (preferably Banking), Audit role in consulting companies

 

 

About Company

Steersman Talent Acquisition Pvt. Ltd is a franchisee of Antal International Network, specialising in recruitment of IT & ITES profiles with focus on SAP Resources

Job ID: 151128011

Similar Jobs

Navi Mumbai, Mumbai City, Mumbai

Skills:

Penetration TestingVulnerability ManagementFirewallsSiemIncident ResponseRisk AssessmentSecurity ArchitectureCompliance ManagementIDS/IPSSecurity Operations

Navi Mumbai, Mumbai, India

Skills:

Iso 27001API securityDevSecOpsDlpAWSApplication SecuritySiemAzureIamcloud securityGcpCISsecure coding practicessecurity incidentsPCI-DSScybersecurity frameworksnistEDRrisk assessments