Senior Manager Security Governance & Compliance

About Position: We are looking for a Sr. Manager - security governance & Compliances to join our team and help us to maintain cybersecurity governance framework, cybersecurity policies conduct oversees cybersecurity risk assessment and management plan and responsible for running information security.

• Role: Senior Manager Security Governance & Compliance
• Location: Bengaluru, Pune
• Experience: 15 to 17 Years
• Job Type: Full Time Employment

• Establish and maintain a cybersecurity governance framework
• Ensure cybersecurity policies are aligned with business objectives and regulatory requirements
• Conduct and oversee cybersecurity risk assessments and management plans.
• Conduct and oversee cybersecurity risk assessments and management plans. Evaluate and refine the current cybersecurity, business continuity and data protection controls. Ensure continuous improvement.
• Identify risk, design & implement control, and the create supporting documentation such as procedure and baseline.
• Responsible for running Information Security Management System, Business Continuity Management System and AI Management System.
• Preparation of management dashboards and presenting it to senior management
• Create and maintain KPIs and KRIs for Information Security and business continuity & compliance activities. Evaluate effectiveness of the information security program by developing, monitoring, gathering, and analyzing information security and compliance metrics for management.
• Examine, evaluate, and verify policies, procedures, and internal controls around information systems and networks.

• Implements processes to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
• Fostering a culture of cybersecurity awareness and compliance across the organization. Development and deployment of security training and awareness initiatives.
• Work with the external certification teams to get the certification as required.
• Understanding physical security requirements and work with respective department for implementation of controls.
• Responsible for development and maintenance of AI governance program across the company. Understanding of AI Management System (ISO 42001). Develop and implement AI Management framework.
• Understanding of the current security threat landscape and information security frameworks such as ISO27001, NIST CSF, SOC 1 and SOC 2.
• Review Master service agreements from security perspective. Have discussions with customers during the due-diligence and negotiation stage.
• Participate in incident response tabletops, business continuity tests, and other compliance activities and exercises.
• ISO 27001, ISO 22301, ISO 27701, CISA, CISSP, CISM, CRISC

• Competitive salary and benefits package
• Culture focused on talent development with quarterly promotion cycles and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

• Accelerate growth, both professionally and personally
• Impact the world in powerful, positive ways, using the latest technologies
• Enjoy collaborative innovation, with diversity and work-life wellbeing at the core
• Unlock global opportunities to work and learn with the industry’s best