Information Security Engineer

Location: Noida
Experience: Minimum 4 years

C2Treds is an RBI-approved TReDS platform, part of C2FO the world s leading on-demand working capital platform. Our mission is clear: to empower every MSME in India with the working capital they need to thrive, driving long-term sustainability and economic growth. At C2Treds, a strategic initiative by C2FO, we are transforming the landscape for MSMEs in India by unlocking easier access to working capital. As India s only fintech platform offering both Early Pay and TReDS functionalities, we enable businesses to bypass receivables delays, enhance financial agility, and unleash their full growth potential.

We understand that MSMEs are the backbone of India s economy, contributing to 30% of the country s jobs. Yet, these businesses often face significant barriers like restrictive debt cycles, high interest rates, and delayed payments that stifle their growth potential. That s where C2Treds comes in with over 50,000 MSMEs in C2FO s India network, we are dedicated to breaking down these financial barriers and providing a direct path to success.

By joining C2Treds, you ll be part of an innovative, growth-driven company at the forefront of transforming MSME financial empowerment and shaping India s economic future.

As an Information Security Engineer, you will support the design, implementation, and maintenance of security measures to protect C2TReDS infrastructure, applications, and data. Working closely with the Head of Security, you will help identify vulnerabilities, ensure compliance with regulatory standards, and respond to security threats. This is a hands-on role where you will contribute to strengthening the organizations security posture.

Responsibilities:

• Assist in the implementation and maintenance of information security strategies, ensuring alignment with regulatory requirements, industry standards, and business goals.
• Support the development and enforcement of information security policies, procedures, and best practices to protect data integrity, confidentiality, and availability.
• Monitor security alerts, analyze potential threats, and assist in incident detection, response, and resolution to mitigate security risks.
• Conduct risk assessments and vulnerability scans to identify security weaknesses and assist in remediation efforts.
• Work closely with engineering and IT teams to embed security best practices across the software development lifecycle and cloud infrastructure.
• Assist in security audits, compliance checks, and regulatory reporting to ensure adherence to RBI guidelines, DPDP Act, ISO 27001, and Cert-IN regulations.
• Manage and configure security tools such as firewalls, IDS/IPS, SIEM, endpoint protection, and vulnerability scanners.
• Assist in access control management, ensuring appropriate permissions and role-based access policies are in place.
• Contribute to security awareness programs, helping employees understand cybersecurity threats and best practices.
• Stay updated on emerging security threats, attack vectors, and defensive technologies, recommending enhancements to security processes.

Qualifications and Skills:

• Bachelor s degree in Information Security, Computer Science, IT, or a related field.
• Minimum of 4 years of experience in information security, cybersecurity operations, or risk management.
• Hands-on experience with firewalls, IDS/IPS, SIEM tools, endpoint security, and vulnerability management.
• Strong understanding of network security, encryption, identity and access management (IAM), and cloud security (AWS, Azure, or GCP).
• Knowledge of security frameworks such as ISO 27001, NIST, CIS Controls, and RBI IT Guidelines.
• Exposure to penetration testing, security log analysis, incident response, and threat intelligence.
• Strong problem-solving, analytical, and communication skills.
• Relevant certifications preferred (CEH, Security+, CISSP (Associate), CISM).
• Ability to work in a fast-paced environment, collaborate with cross-functional teams, and maintain a security-first mindset.

Benefits :

At C2FO, we value our customers and team members the vital human capital that drives our customers success. Thats why we offer a comprehensive benefits package, flexible work options to support work/life balance, volunteer time off, and more. Learn more about our benefits here .

Commitment to Diversity and Inclusion :

As an Equal Opportunity Employer, we not only value diversity and equality, but we also empower our team members to bring their authentic selves to work every day. Our goal is to create a workplace that reflects the communities we serve and our global, multicultural clients. We recognize the power of inclusion, emphasizing that each team member was chosen for their unique ability to contribute to the overall success of our mission.

We do not discriminate based on race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment decisions are based on qualifications, merit, and business needs.

#LI-PV