About The Company
Tata Communications Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media services and Network services, we at Tata Communications are envisaging a New World of Communications
The Information Security Lead is responsible for driving security assurance and customer trust activities across Europe within a global enterprise environment. This role serves as the senior point of contact for European customer security requests (RFPs, RFIs, due diligence), regional audits, and compliance initiatives. Working closely with international managers and cross-regional teams, the Lead ensures that the organization's security posture is accurately represented, consistently documented, and continuously improved.
The ideal candidate will combine deep knowledge of security frameworks with strong communication and organizational skills, operating effectively in a fast-paced, multinational enterprise.
Key Responsibilities & Accountabilities
- Take ownership of European customer and vendor security questionnaires (RFPs, RFIs, due diligence requests), ensuring accurate, timely, and high-quality responses
- Represent the organization's security program in customer calls, audits, and external assessments across Europe, acting as a trusted subject matter expert
- Maintain and enhance the repository of questionnaire responses, templates, and supporting documentation for the European market
- Lead the development, implementation, and refinement of security policies, standards, and procedures applicable to the European region, aligned with global frameworks
- Collaborate with Legal, Product, Engineering, and Compliance teams in Europe and globally to align security practices with business and regulatory requirements
- Coordinate European internal and third-party security audits, ensuring readiness and successful completion
- Support compliance activities related to frameworks and regulations (ISO 27001, SOC 2, GDPR, NIS2)
- Drive business continuity and disaster recovery testing activities, ensuring testing is completed and results are actioned
- Act as a regional trusted advisor to stakeholders and senior management, escalating risks and proposing solutions where needed
- Qualifications
- 8+ years of experience in information security, IT risk, or compliance, ideally within a large enterprise or multinational environment
- Proven experience working with and reporting to international remote managers
- Strong knowledge of information security standards and frameworks (e.g., ISO 27001, SOC 2, NIST, GDPR, PCI DSS, NIS2)
- Broad understanding of security concepts and technologies (cloud security, encryption, networking, authentication)
- Demonstrated success in leading customer-facing security activities, such as audits, RFPs, and due diligence reviews
- Excellent communication skills, with the ability to explain complex security concepts to technical and non-technical stakeholders
- Strong organizational skills, with experience managing multiple requests and deadlines across different regions
- Professional certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer, or CCSK are highly desirable.
