Chief Information Security Officer - PayU Finance

What you’ll be doing:

• ·  Implementation and maintenance of information security standards - ISO 27001:2022, UIDAI KUA etc.
• ·  IT Risk Assessments and IT General Controls
• ·  Business continuity management for IT systems - on-prem and cloud
• ·  Supporting internal and external audits 
• ·  Reporting and documentation
• ·  Coordination and project management
• ·  Strategic planning and policy development
• ·  SOC management (with third party)
• ·  Third party risk management
• Budget oversight and planning

What are we looking for?

• ·  Knowledge of more than one widely recognized standards/industry frameworks, including but not limited to ISO 27001:2022, RBI Master Directions on IT outsourcing and IT governance, data localization etc.
• ·  Having an in-depth knowledge of IT auditing and assurance practices.
• ·  Having an understanding of SDLC security.
• ·  Experience of monitoring/managing security operation activities, IT security architecture, incident response planning, security metrics and reporting etc.
• ·  Having knowledge of conducting IT/tech risk assessments and preparing business continuity plans.
• ·  Ability to keep oneself updated with the latest threats and security standards.
• ·  Good verbal and written communication skills.
• ·  Technical proficiency in security technology that can be demonstrated.
• ·  Continuous learning and problem-solving, characterized by adaptability and analytical thinking will be a plus.

Qualifications:

• Graduate - IT / Computer Science / Electronics & Telecommunications would be a plus, but not mandatory.

Certifications (any one):

• ·  CISSP / CCSP
• ·  CISA / CISM / CRISC / CDPSE
• ·  OSCP / OSCE / OSEP