Job Title:Information Security Officer
Company:Peko Payments Private Limited
Location:Bangalore (Hybrid)
About Peko Payments
Peko is an allinone platform for small and medium sized businesses (SMBs) to manage payments, expenses, travel, insurance and automate their multiple operations. Peko provides bestinclass payment and operations management solutions for SMBs, focused on empowering businesses by consolidating their payment and expense workflows into a unified, intuitive platform.
Role Overview
As the Information Security Officer (ISO) at Peko Payments, you will take ownership of the company's information security, data protection and regulatory compliance frameworks. You'll design, implement and oversee security controls, monitor risk, lead incident response, and help ensure that the platform remains trustworthy, resilient and compliant with relevant Indian and global standards.
This is a hybrid role based in Bangalore and reports into the Compliance or Technology leadership team.
Key Responsibilities
- Develop, implement and maintain the enterprise information security programme aligned with ISO 27001, PCI DSS, IT Act, etc.
- Conduct regular risk assessments, vulnerability scans, and penetration tests.
- Manage incident response, investigation, rootcause analysis, and corrective action.
- Define and enforce security controls for access, encryption, endpoint, and cloud security.
- Ensure thirdparty/vendor security compliance and ongoing monitoring.
- Lead employee awareness and training on information security and data privacy.
- Collaborate with cross-functional teams to embed security by design in all services.
- Prepare and present security reports, KPIs, and compliance status to management.
- Monitor regulatory changes and ensure continuous compliance alignment.
Required Qualifications & Experience
- Bachelor's or Master's degree in Computer Science, Information Security, or related field.
- 47 years of experience in information security, preferably in fintech or BFSI sectors.
- Knowledge of ISO27001, NIST, PCIDSS, ITAct, RBI guidelines.
- Hands-on experience with SIEM, DLP, cloud and network security tools.
- Certifications preferred: CISSP, CISM, CISA, ISO27001 Lead Implementer/Auditor, CEH.
- Excellent analytical, communication, and stakeholder management skills.
Key Skills & Attributes
- Strong risk-based and analytical approach to security.
- Ability to translate technical issues into business context.
- Ethical judgment and discretion with sensitive data.
- Collaboration across departments including engineering and compliance.
- Proactive, self-motivated, and adaptable in a fast-paced fintech environment.
How to Apply
Interested candidates can send their updated CV to[Confidential Information]
or apply directly through the official LinkedIn job post for this role.
