Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Security and Intelligence Services (India)

Compare

4.2

based on 1.3k Reviews

107 Security and Intelligence Services (India) Jobs

Business Information Security Officer - Enterprise Data Organization

S&P Global Inc.

4.2

based on 1.3k Reviews

8-13 years

Hyderabad / Secunderabad, Gurgaon / Gurugram

1 vacancy

Business Information Security Officer - Enterprise Data Organization

Security and Intelligence Services (India)

posted 20d ago

Job Role Insights

Flexible timing

Key skills for the job

Python PHP Information Security Equity Research Network Security Open Source

+ 3 more

Job Description

We are looking for a pro-active and forward-thinking Business Information Security Officer that is well versed in information security management principles and comes from a technical hands-on background and can manage multiple parallel projects. This is a leadership position within the S&P Enterprise Data Organization (EDO) focusing on establishing best practices and driving security practices within the business unit.

As the Business Information Security Officer, you will be the Cyber Security & Assurance primary point of contact for the division, responsible for the development, communication, compliance and governance of the divisional security strategy, roadmap and policies that are in alignment with the organization s overall security objectives.

Responsibilities :

Design, implement, and maintain global security policies, standards, and procedures focused on protecting data across all environments, ensuring alignment with business and IT priorities.
Ensure the divisional security strategy aligns with broader organizational goals, particularly data privacy and protection regulations (e.g., GDPR, CCPA).
Own and manage all data-related security risks, performing risk assessments specific to data storage, processing, and transfer.
Identify, assess, and prioritize data security vulnerabilities, ensuring effective remediation plans are in place and executed.
Conduct periodic audits of data security controls to ensure compliance with internal policies and external regulations.
Ensure adherence to data protection laws and implement robust measures for data privacy, security, and retention.
Work closely with software development teams to ensure secure data handling throughout the software development lifecycle (SDLC), embedding security in data processing systems and applications.
Ensure that data security requirements are incorporated into all phases of technology systems, from design through deployment.
Lead investigations into data security breaches, ensuring proper reporting and communication with senior management during incidents.
Work with the Cyber Incident Response Team (CIRT) to address and mitigate cybersecurity incidents, ensuring appropriate remediation of data breaches.
Develop and deliver targeted security training programs for employees, contractors, and third parties on best practices for data protection.
Implement ongoing data security awareness initiatives, ensuring all stakeholders understand the importance of safeguarding organizational data.
Coordinate with third-party security vendors to conduct vulnerability assessments, penetration tests, and security audits focused on data protection.
Stay current on emerging data security trends, threats, and technologies, recommending updates to security measures as needed.
Establish and maintain a strong data security posture, continuously monitoring the effectiveness of controls and processes.
Represent EDO security to external stakeholders.
Regularly evaluate the organization s data security safeguards, ensuring they provide robust protection against evolving threats and data-related risks.

Qualifications & Experience:

Bachelor s degree in computer science, Information Systems, Engineering, or a related field (master s preferred).
CISSP (Certified Information Systems Security Professional) is a MUST (non-expired).
OWASP Membership and CRISC (Certified in Risk and Information Systems Control) preferred.
8- 10+ years of experience in security-focused roles, particularly in technology-heavy industries (e.g., Software, Financial Services).
Prior experience as a software engineer or systems/network engineer.
Proven track record of securing cloud-based services, ensuring scalability, performance, and reliability.
Experience with PII (Personally Identifiable Information) and security compliance regulations.
Expertise in a wide range of security domains: access controls, network security, cloud security, PKI and cryptography, application security, security models, and incident management.
Experience in cloud computing architectures, common open-source technologies (e.g., Kafka, Spark, Hadoop), and web application development (e.g., Java, PHP, Python).
Strong understanding of NIST security controls frameworks, risk assessment, and risk management.
Experience in secure software design, security testing, and vulnerability remediation.
Familiarity with service control frameworks such as SOC 1 and 2.
Knowledge of threat modeling and risk management practices.
Solid experience in security engineering, system and network security, authentication, cryptographic protocols, and application security.
Strong ability to design secure architectures and review security in development processes.
Familiarity with common security testing tools, vulnerability scanners, and security code reviews.
Strong project management skills with experience leading cross-functional teams in large, complex security projects.
Demonstrated ability to mentor and lead security engineers and managers, fostering a culture of high morale and agility.
Experience with usage and Risk around use of AI in the enterprise a definite bonus

Employment Type: Full Time, Permanent

Read full job description

Security and Intelligence Services (India) Interview Questions & Tips

Prepare for Security and Intelligence Services (India) roles with real interview advice

People are getting interviews at Security and Intelligence Services (India) through

(based on 42 Security and Intelligence Services (India) interviews)

Walkin

Company Website

Job Portal

Campus Placement

Referral

26%

19%

17%

10%

21% candidates got the interview through other sources.

High Confidence

What people at Security and Intelligence Services (India) are saying

What Security and Intelligence Services (India) employees are saying about work life

based on 1.3k employees

50%

46%

93%

Flexible timing

Monday to Saturday

Within city

Day Shift

View more insights

Compare Security and Intelligence Services (India) with

G4S

4.0

Compare

SIS Prosegur Holdings

3.6

Compare

Tops Security

4.1

Compare

Force 1 Guarding Services

4.1

Compare

Premier Shield

3.7

Compare

Securitas

3.8

Compare

Border Security Force

4.5

Compare

Central Industrial Security Force

4.5

Compare

IDEMIA

4.0

Compare

myGate

3.3

Compare

Methodex

3.7

Compare

Transguard Group

4.1

Compare

Helloverify

3.3

Compare

TÜV Rheinland

4.0

Compare

Peregrine Guarding

3.9

Compare

Bombay Intelligence Security

3.7

Compare

Jaguar Security Services

4.5

Compare

NAFFCO

3.4

Compare

Pinkerton

3.7

Compare

Confederation of Indian Industry

3.2

Compare

Similar Jobs for you

Business Information Security Officer at GMR HYDERABAD INTERNATIONAL AIRPORT LIMITED

Hyderabad / Secunderabad

6-12 Yrs

₹ 10-14 LPA

Information Security Specialist at Amdocs Development Center India Pvt. Ltd.

Pune

5-12 Yrs

₹ 7-14 LPA

Information Security Manager at Amerisource Bergen

Pune

5-8 Yrs

₹ 8-12 LPA

Information Security Manager at AmerisourceBergen

Pune

6-10 Yrs

₹ 8-12 LPA

Business Information Security Officer at DELHI INTERNATIONAL AIRPORT PRIVATE LIMITED

Mumbai, Bangalore / Bengaluru

8-10 Yrs

₹ 10-12 LPA

Information Security Analyst at Commissum (Eurofins Cyber Security UK)

Bangalore / Bengaluru

4-8 Yrs

₹ 6-10 LPA

Information Security Analyst at Commissum (Eurofins Cyber Security UK)

Bangalore / Bengaluru

4-8 Yrs

₹ 12-17 LPA

Information Security Analyst at Commissum (Eurofins Cyber Security UK)

Bangalore / Bengaluru

4-8 Yrs

₹ 12-17 LPA

Senior Information Security Analyst at Eurofins It Solutions India Pvt Ltd

Bangalore / Bengaluru

7-8 Yrs

₹ 9-10 LPA

Senior Information Security Analyst at Commissum (Eurofins Cyber Security UK)

Bangalore / Bengaluru

5-9 Yrs

₹ 7-11 LPA