Chief Information Security Officer (CISO)

ConfidentialBengaluru / Bangalore, India

7 days ago

Job description

The CoinDCX Journey : Building Tomorrow, Today

At CoinDCX, we believe 'CHANGE STARTS TOGETHER'. You are the driving force that will help us make Web3 accessible to all. In the last six years, we have skyrocketed from being India's first crypto unicorn to carrying a community of over 125 million with us. To continue maximising the adoption and acceleration of Web3, we are now focused on developing cutting-edge products, addressing accessibility and security challenges, and bridging the gap between people and Web3 technologies.

While we go ahead and keep dominating the Web3 world, we would like to HODL you on our team! Join our team of passionate innovators who are breaking barriers and building the future of Web3. Together, we will make the complex simple, the inaccessible accessible, and the impossible possible. Boost your innovation to an ALL TIME HIGH with us!

Inside CoinDCX's IT Team

Our IT team ensures that CoinDCX's technological infrastructure is robust, reliable, and secure. We manage everything from network security to user support, enabling all teams to work efficiently. If you're a tech-savvy problem solver with a passion for IT, join us in keeping CoinDCX's operations running smoothly and securely.

You need to be a HODLer of these

18+ years of experience in information security, with at least 8 years in a senior leadership role.
Strong knowledge of information security standards and frameworks (e.g., ISO 27001, NIST Cybersecurity Framework, CIS Controls).
Proven experience in developing and implementing comprehensive information security programs.
Strong knowledge of exchange architecture, Web3 risks, and smart contract vulnerabilities.
Experience securing both centralized and decentralized products.
Solid understanding of risk management principles and practices.
Experience conducting security risk assessments and developing mitigation strategies.
In-depth knowledge of regulatory requirements related to information security and data privacy.
Strong leadership skills with the ability to inspire and motivate teams.
Exceptional communication and interpersonal skills, with the ability to interact effectively at all levels of the organization.
Analytical mindset with the ability to think critically and solve complex problems.
Detail-oriented with strong organizational and project management skills.
Ability to navigate and influence in a complex and fast-paced business environment.
Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) are highly desirable.
High ethical standards and a commitment to maintaining confidentiality and integrity.
Excellent business acumen and a commercial outlook.

You will be mining through these tasks

Define and drive the security vision and roadmap across both CEX (Centralized Exchange) and DEX (Decentralised Exchange) operations.

Serve as the executive voice on all cybersecurity, risk, and compliance matters.

Build and lead a high-performing team across GRC, AppSec, DevSecOps, and detection & response.

Develop and maintain a comprehensive enterprise risk management framework.

Oversee compliance with ISO 27001, SOC 2, CCSS, and applicable crypto-specific regulations (e.g., FATF, MiCA, VDA guidelines in India).

Manage risk assessments across on-chain protocols, custody infrastructure, and cloud services.

Secure trading engine, matching system, order books, KYC / AML platforms, and backend APIs.

Oversee user authentication, device trust, and account protection (MFA, anti-phishing, etc.).

Ensure wallet segregation (hot, warm, cold), MPC / HSM integration, and transaction monitoring with risk-based approvals.

Implement DDoS mitigation, rate limiting, and bot protection for web / mobile frontends.

Oversee end-to-end smart contract security lifecycle : design review, threat modeling, formal verification, and audits.

Monitor for protocol exploits, front-running, sandwich attacks, and liquidity manipulation.

Define incident response for on-chain threats (e.g., governance attacks, oracle manipulation).

Coordinate response to both traditional incidents (e.g., malware, access breaches) and blockchain-native incidents (e.g., contract exploits, bridge failures).

Develop internal and external playbooks, including interaction with law enforcement and regulators.

Define policies and architecture for secure custody, whether via in-house MPC / HSM or third-party platforms.

Manage access control, key rotation, transaction signing quorum, and air-gapped cold storage strategies.

Integrate security into CI / CD pipelines and SDLC across microservices and smart contract repositories.

Ensure secure cloud infrastructure (AWS), container environments (Kubernetes), and identity platforms (e.g., JumpCloud)

Collaborate with engineering / technology and other departments to integrate security measures into the organization's technology infrastructure and operations.

Develop and manage the information security budget, ensuring efficient allocation of resources to high-priority initiatives.

Stay current with emerging security threats and technologies, and adapt strategies accordingly to mitigate risks.

Develop and implement a robust incident response plan to address potential security breaches and minimize impact.

Are you the one Our missing block

You are knowledge-hungry when it comes to VDA and Web3, always eager to dive deeper and stay ahead in this evolving space.

The world of Web3 and VDA excites you, fueling your curiosity and driving you to explore new opportunities within this dynamic landscape.

You act like an owner, constantly striving for excellence, impact, and tangible results in everything you do.

You embrace a 'We over Me' mindset, growing individually while fostering the growth of those around you.

Change is your catalyst, igniting your passion to build and innovate.

You think outside the box, unbound by limitations or doubt, always pushing the boundaries of what's possible.

Perks That Empower You

Our benefits are designed to make a lasting impact on your life, giving you the freedom to create a work-life balance that truly suits you.

Design Your Own Benefit : Tailor your perk package to fit your unique needs. Whether you're eyeing a new gadget or welcoming a furry friend into your life, our flexible benefits ensure that you can prioritize what matters most to you.

Unlimited Wellness Leaves : We believe in the power of well-being. Take the time you need to recharge, knowing that your health is our priority. With unlimited wellness leaves, you can return refreshed, ready to build and grow.

Mental Wellness Support : Your mental health is as important as your professional growth. Benefit from access to health experts, free counseling sessions, monthly wellness workshops, and regular team outings, all designed to help you stay balanced and connected.

Bi-Weekly Learning Sessions : These sessions are more than just updates—they're opportunities to fuel your growth. Stay ahead with the latest industry knowledge, sharpen your skills, and accelerate your career in an ever-evolving landscape.

Skills Required

Sdlc, ddos mitigation , Iso 27001, Cloud Infrastructure, Kubernetes, Aws

Create a job alert for this search

Chief Information Security Officer • Bengaluru / Bangalore, India

Related jobs

Promoted

Senior Manager - Information Security (Governance, Risk and Compliance)

NaviBengaluru, Karnataka, India

At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regu...Show moreLast updated: 3 days ago

Promoted

Information Security Risk Manager

Live ConnectionsBengaluru, Republic Of India, IN

Manager – Information Security (Third-Party Risk Management).Educational Qualifications / Certifications.Bachelor’s degree in Computer Science, Engineering, or a related field (or equivalent work e...Show moreLast updated: 1 day ago

Promoted

Information Security Lead - CISSP / CISM Certified

DashhireBangalore

This role involves building and leading the information security function at Nurix AI.The company is experiencing rapid growth and requires a seasoned expert to establish a world-class security pos...Show moreLast updated: 30+ days ago

Promoted

Pixis - Head of Information Security - Vulnerability Management

PixisBangalore

Description : Why Pixis ? We at Pixis believe that nothing is impossible, when you fail fast you learn faster, zero hierarchy, put the team above...Show moreLast updated: 25 days ago

Promoted

Head of Information Security

PixisBengaluru, Karnataka, India

Pixis is a global AI technology company transforming how brands plan, create, and optimize marketing.Our flagship marketing operating system, Prism, sits at the core of the Pixis platform, using AI...Show moreLast updated: 30+ days ago

Promoted

Senior Manager - Information Security and System Audit

sliceBengaluru, Karnataka, India

About the role The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.The role involves conduct...Show moreLast updated: 16 days ago

Promoted

Pixis - Head of Information Security

PixisBangalore

About us : Pixis is a global AI technology company transforming how brands plan, create, and optimize marketing.Our flagship marketing operating system, Prism, sits a...Show moreLast updated: 30+ days ago

Promoted

GoTo Group - Cloud Security Manager - CISO

ConfidentialBengaluru / Bangalore, India

If you're looking to be a part of a dynamic, highly analytical team that enjoys working closely with cloud infrastructure systems and security, look no further. As a Cloud Security Engineer for GoTo...Show moreLast updated: 7 days ago

Promoted

Chief Information Security Officer

ConfidentialBengaluru / Bangalore

Develop and implement an organization's cyber security strategy to protect against threats from hackers, malware, and other external sources. Ensure compliance with industry standards and regulation...Show moreLast updated: 7 days ago

Promoted

Information Security Officer - Vice President

ConfidentialBengaluru / Bangalore, India

VP, Information Security Officer.State Street and sits within the first line of defense and reports into the Global Cybersecurity Organization. The Information Security Officer will align closely wi...Show moreLast updated: 7 days ago

Promoted

Niyo Solutions - Manager - Information Security

Niyo SolutionsBangalore

PROFILE : ISM / Information Security Manager.Niyo Information Security function looking for a candidate who can manage Information Security operations in order to maintain and improve Information S...Show moreLast updated: 8 days ago

Promoted

Head of Information Security

HotelTrader LodgIQ (India) Pvt. Ltd.Bangalore, IN

Hotel Trader is a 100% automated & cloud-based distribution management company providing the tools necessary for hotels to seamlessly connect to global demand with the click of a button.We fully em...Show moreLast updated: 30+ days ago

Promoted

Chief Information Security Officer (CISO)

PixisBengaluru, Republic Of India, IN

Promoted

Information Security Initiatives Manager

NaviBengaluru, Republic Of India, IN

Promoted

Information Security Engineer - CISM / CISSP Certification

HyrEzy Talent SolutionsBangalore

Roles & Responsibilities (BSc.IT, BE) with Information Security Certifications - CISM, CISSP EXPERIENCE : ...Show moreLast updated: 30+ days ago

Promoted

Lead Information Security and Compliance Officer

NaviBengaluru, Republic Of India, IN

Promoted

SOC Lead

ITC InfotechBengaluru, Karnataka, India

Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.Drive operational excellence, process maturity, and automation across SOC functions.Coordinate ...Show moreLast updated: 3 days ago

Promoted

Head Of Information Security

PixisBengaluru, Republic Of India, IN