Role & responsibilities:
- Understand industry development on Digital payments and enable business to provide secured systems.
- Stay current with new and evolving security topics and technologies and build sound governance standard for payment security
- Drive PCI DSS compliance across business and technology
- Drive necessary system and process updates to comply with various regulatory guidelines
- Work closely with cross-functional teams and develop strong liaison relationships to drive information security.
- Liaison with business team and technology team to carry business process, product and technology control review
- Performing Third Party Vendor Risk Assessments from Information Security Perspective
- Manage and Monitor Third Party Vendor Risks vectors
- Performing a thorough review of the various functions/operations/applications being used by the firm as part of RCSA
- To ensure compliance of various circulars or advisories provided by Cert-In and RBI, relating to Application Security, VA or PT
- To prepare and keep all the records ready for Internal Audits, IS Audits, IT Audits, Statutory Audit, Cyber Security Insurance Questionnaire and Certification Audit
- To Coordinate with various stakeholders to ensure timely response and closure of observations1
- Well-versed in Card Data Security and other regularity standards like NPCI/RBI
Key Skills:
- Leadership and management skills
- Sound communication skills
- Strong analytical and presentation skills
Experience & Qualifications:
- 10-14 years in Information Technology out of which 5-7 years in managing security of cards with a bank or IT managed service provider/assessor
- Graduate/Post-graduate in IT or Computer Science with relevant PCIDSS certifications
Certifications:
- CISA, CRISC, CISSP, CISM, PCI DSS QSA, ISO 27001:2013 LA
