Chief Information Security Officer - PayU Finance

About PayU
PayU, a leading payment and Fintech company in 50+ high-growth markets throughout Asia, Central and Eastern Europe, Latin America, the Middle East and Africa, part of Prosus group, one of the largest technology investors in the world is redefining the way people buy and sell online for our 300.000+ merchants and millions of consumers. 
As a leading online payment service provider, we deploy more than 400 payment methods and PCI-certified platforms to process approximately 6 million payments every single day. 
Thinking of becoming a PayUneer and you are curious to know more about us? Read more about the life in PayU here 

What you’ll be doing:

• ·  Implementation and maintenance of information security standards - ISO 27001:2022, UIDAI KUA etc.
• ·  IT Risk Assessments and IT General Controls
• ·  Business continuity management for IT systems - on-prem and cloud
• ·  Supporting internal and external audits 
• ·  Reporting and documentation
• ·  Coordination and project management
• ·  Strategic planning and policy development
• ·  SOC management (with third party)
• ·  Third party risk management
• Budget oversight and planning

What are we looking for?

• ·  Knowledge of more than one widely recognized standards/industry frameworks, including but not limited to ISO 27001:2022, RBI Master Directions on IT outsourcing and IT governance, data localization etc.
• ·  Having an in-depth knowledge of IT auditing and assurance practices.
• ·  Having an understanding of SDLC security.
• ·  Experience of monitoring/managing security operation activities, IT security architecture, incident response planning, security metrics and reporting etc.
• ·  Having knowledge of conducting IT/tech risk assessments and preparing business continuity plans.
• ·  Ability to keep oneself updated with the latest threats and security standards.
• ·  Good verbal and written communication skills.
• ·  Technical proficiency in security technology that can be demonstrated.
• ·  Continuous learning and problem-solving, characterized by adaptability and analytical thinking will be a plus.

Qualifications:

• Graduate - IT / Computer Science / Electronics & Telecommunications would be a plus, but not mandatory.

Certifications (any one):

• ·  CISSP / CCSP
• ·  CISA / CISM / CRISC / CDPSE
• ·  OSCP / OSCE / OSEP