Chief Information Security Officer (6-12 yrs)

Position Name - Chief Information Security Officer (CISO)

Location - Bengaluru (Koramangla)

Experience Range - 7+years

Work Model - Work from Office

Mandatory Requirement :

- Maintain proficiency in Oracle RDBMS, MS-SQL, and Cloud Native Technologies, with a deep understanding of Microservices architecture and cloud /on-premise solutions

- In-depth knowledge of cybersecurity principles, practices, technologies, and regulatory requirements (Eg: GDPR, ISO 27001, SOC 2, PCI-DSS, PCI-SSF, IRDAI & RBI regulatory guidelines)

- A minimum of 4 years in software development, with a pronounced focus on DevOps and Cyber Security

- Graduate from a Tier 1 or Tier 2 engineering university

About the Client :

Founded by alumni from IIT and ISB, the company stands at the forefront as an emerging global B2B SaaS firm. The company's core mission is to fully automate the intricate financial operations that enterprises grapple with daily. On this journey, they have collaborated with a diverse clientele, including global banks, premier fintechs, leading e-commerce platforms, and the next generation of unicorns.With their innovative solutions, they have successfully transformed customers' cumbersome FinOps processes, helping them achieve operational and commercial excellence.

Job Roles and Responsibilities :

- Design, implement, and maintain security controls, architectures, and frameworks to protect the company's systems and infrastructure

- Work closely with Engineering and business teams to identify security vulnerabilities, follow-up on outstanding findings, document new/updated technology infrastructure elements

- Implement vulnerability scanning and assessment tools to detect and remediate security issues promptly

- Develop and implement incident response procedures and playbooks to facilitate rapid response and recovery in the event of a security incident

- Stay abreast of emerging threats, vulnerabilities, and industry trends, and provide strategic guidance on security initiatives, investments and compliance measures

- Prepare and present regular reports and updates on the company's cybersecurity posture, key metrics, and initiatives to the management

- Lead the organisation in various security audits as well as certifications

- Establish and maintain security governance frameworks, risk management processes,and risk assessment methodologies to identify, assess, and mitigate security risks

Qualification and Experience :

- An in-depth knowledge and understanding of Privileged Identity and Access Management principles and best practices in common best-in-class products

- Lead software developers, enhancing data architecture and ensuring alignment with evolving business needs

- Maintain proficiency in Oracle RDBMS, MS-SQL, and Cloud Native Technologies, with a deep understanding of Microservices architecture and cloud/on-premise solutions

- In-depth knowledge of cybersecurity principles, practices, technologies, and regulatory requirements (Eg: GDPR, ISO 27001, SOC 2, PCI-DSS, PCI-SSF, IRDAI & RBI regulatory guidelines)

- Strong knowledge of machine-to-machine and application-to-machine connections using MFA, certificates, tokens, and other methods

- A minimum of 4 years in software development, with a pronounced focus on DevOps and Cyber security

Other Details :

- Work from office