Looking For Vice President - IT Security

About SMFG IndiaSMFG India Credit Co. Ltd. (Formerly Fullerton India Credit Co. Ltd.) is registered as an NBFC - Investment and Credit Company (NBFC-ICC) with the Reserve Bank of India and is a member of SMBC Group. SMFG India Credit started its India operations in 2007 and today is a leading NBFC with a Pan India presence.

The firm has invested in technology and digital capabilities to enhance customer and stakeholder experience, and paved the way forPragati Ki NayiPehchaan. This echoes our core values and ethos of making things simpler, in our journey to empower people. We remain gender neutral and do what is right for the community.

Job OverviewThe IT Security Governance Lead is responsible for overseeing the development, implementation, and maintenance of the IT security governance framework. This role ensures that IT security strategies align with business objectives and comply with industry standards and regulations. The Lead will manage a team of analysts and work closely with senior management to enhance the organization's security posture.

Key Roles & Responsibilities

• Strategic Planning:Develop and execute IT security governance strategies that align with the organization's goals and regulatory requirements.
• Policy Development:Oversee the creation and maintenance of IT security policies, procedures, and guidelines.
• Risk Management:Lead risk assessments to identify vulnerabilities and develop mitigation strategies.
• Compliance Oversight:Ensure compliance with IT security policies and regulatory requirements, addressing any non-compliance issues.
• Audit Management:Coordinate internal and external IT security audits, ensuring all necessary documentation and evidence are available.
• Team Leadership:Manage and mentor a team of IT security analysts, providing guidance and support.
• Stakeholder Engagement:Collaborate with IT staff, business leaders, and external vendors to implement and maintain IT security measures.
• Incident Response:Develop and oversee incident response plans to address security breaches and other IT security incidents.
• Training and Awareness:Lead training sessions and awareness programs to educate employees about IT security policies and best practices.
• Continuous Improvement:Stay informed about emerging IT security threats and trends, and continuously improve the IT security governance framework.
• Candidates who have experience (hands on) on Identity & access management, DLP, DAM etc from various product knowledge, implementation experience and operations.

Experience Required (In Years)Extensive experience in IT governance, risk management, and compliance, with a proven track record in a leadership role.

Qualification Required Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC) are highly desirable.