Talent.com
No longer accepting applications
Chief Information Security Officer (CISO) - Indian BFSI - 15 years+

Chief Information Security Officer (CISO) - Indian BFSI - 15 years+

datavrutiHyderabad, IN
1 day ago
Job description

Job Title : Chief Information Security Officer (CISO)

Location : Mumbai - Work From Office

Reporting To : Chief Risk Officer (with dual reporting to Board Risk / Audit Committee)

Sector : General Insurance

Experience : 15+ years in Information Security with leadership exposure in BFSI, ideally Insurance or FinTech

Salary : 50LPA+ based on fitment

Role Overview

  • The Chief Information Security Officer (CISO) will define and implement the company’s end-to-end Information Security framework, ensuring secure design, regulatory readiness, and operational resilience as the company moves from 0 to 1.
  • This is a strategic yet hands-on leadership role, ideal for someone who has managed security at scale in a regulated BFSI / Insurance environment, and now wants to build a secure-by-design foundation for a cloud-native, API-driven, AI-powered insurance platform.
  • The CISO will anticipate and pre-empt risks by leveraging prior experience, ensuring that the company’s technology-led innovation is always backed by enterprise-grade security and compliance discipline.

Key Responsibilities

1. Information Security Strategy & Governance

  • Define and implement the enterprise-wide Information Security strategy, encompassing governance, risk management, data protection, and cybersecurity.
  • Establish security policies, frameworks, and control baselines in alignment with IRDAI, CERT-In, ISO 27001, and DPDP Act.
  • Build a scalable ISMS (Information Security Management System) from the ground up.

    • 2. Cloud, Application & API Security

  • Review and work with engineering teams to develop secure architecture design for cloud-native systems, APIs, and microservices.
  • Review implemented automated controls for containerized and serverless environments.
  • Ensure security by design is baked into engineering processes through DevSecOps practices and CI / CD pipelines.

    • 3. Cybersecurity Operations & Threat Management

  • Set up and oversee Security Operations (SOC), including SIEM, SOAR, and vulnerability management.
  • Build detection and response capability tailored for API-driven, AI-heavy applications.
  • Lead threat intelligence, incident response, and post-incident reviews.

    • 4. AI & Data Security

  • Develop frameworks for secure and responsible AI / ML model governance, including data lineage, model access control, and risk mitigation for bias and data leakage.
  • Protect customer and training data in compliance with DPDP and data residency norms.

    • 5. Regulatory & Compliance Management

  • Ensure readiness for IRDAI cyber security and IT governance audits.
  • Collaborate with Compliance and Legal teams for ongoing adherence to regulatory reporting and certifications (ISO 27001, SOC 2, etc.).
  • Build documentation and audit trails for pre-emptive compliance.

    • 6. Third-Party & Ecosystem Security

  • Design and enforce Third-Party Risk Management (TPRM) framework for partners, TPAs, technology vendors, and data processors.
  • Conduct due diligence and continuous monitoring of vendor security posture.

    • 7. Business Continuity & Resilience

  • Establish cloud-native BCP / DR plans, aligned with IRDAI requirements.
  • Lead incident and crisis management drills to validate resilience under simulated failures.

    • 8. Security Culture & Awareness

  • Foster a security-first culture across engineering, product, and operations teams.
  • Conduct awareness programs, red / blue team simulations, and executive security workshops.

    • 9. Leadership & Board Engagement

  • Advise leadership and Board Risk / Audit Committee on key threats, mitigation strategies, and regulatory posture.
  • Build and mentor an internal security team capable of scaling with the business.

    • Desired Profile

  • 15+ years in Information Security, with at least 5 years in senior InfoSec roles at Insurance, NBFC, Bank, or FinTech.
  • Experience securing cloud-native, API-driven, or AI / ML-intensive platforms.
  • Strong grasp of IRDAI, CERT-In, DPDP Act, and global security standards.
  • Proven ability to design and operationalize security frameworks from zero, while ensuring future scalability.
  • Strong collaboration with Product, Engineering, and Risk teams.

    • Qualifications / Certifications

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
  • Preferred certifications : CISSP, CISM, CCSP, ISO 27001 LA, AWS Security Specialty, CRISC.
  • Familiarity with frameworks like NIST CSF, Zero Trust Architecture, and OWASP API Security Top 10.

    • Key Behavioural Attributes

  • Strategic foresight backed by operational pragmatism.
  • Startup agility with an enterprise governance mindset.
  • Strong executive presence and regulatory confidence.
  • Builder-leader who can “set up from scratch” yet think “at scale.”
  • Ethical, transparent, and decisive under pressure.
    • Create a job alert for this search

    Information Security • Hyderabad, IN

    Related jobs
    • Promoted
    SOC / SIEM

    SOC / SIEM

    Tata Consultancy ServicesHyderabad, Telangana, India
    Incidents investigation and Triaging.Analyze complex security incidents escalated from L1 and L2.Identify root cause and attack vectors. Proactively search for hidden threats or intrusions that bypa...Show moreLast updated: 11 days ago
    • Promoted
    Cisco UC Engineer

    Cisco UC Engineer

    Insight GlobalHyderabad, Telangana, India
    Hybrid in Hyderabad, India - Permanent position fulltime - ₹30 LPA + benefits Job Description The Cisco UC Engineer III plays a key role in troubleshooting and resolving advanced telephony and re...Show moreLast updated: 1 day ago
    • Promoted
    Principal Security Engineer - SIEM

    Principal Security Engineer - SIEM

    Cornerstone OnDemand Services India Pvt LtdHyderabad
    Principal Security Engineer India Cybersecurity Engineering : The Principal Security Engineer is a hands-on role that blends cloud security engineering with securit...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Chief Information Officer

    Chief Information Officer

    Intellectt IncHyderabad, Telangana, India
    Hiring : Chief Information Officer (CIO) – AI, Cloud & Digital Innovation.AI, Cloud, Product Engineering, Data & Digital Transformation. Chief Information Officer (CIO).AI / ML, LLMs, LangChain, Cloud ...Show moreLast updated: 10 hours ago
    • Promoted
    Sr. Lead - Cloud Security

    Sr. Lead - Cloud Security

    Sycamore Informatics Inc.secunderabad, telangana, in
    Cloud security framework; Strong scripting skills with PowerShell and.Solid understanding of version control tools, particularly Git. Experience with cloud platforms, including AWS, Azure and GCP.Pr...Show moreLast updated: 3 days ago
    • Promoted
    Business Information Security Officer (BISO)

    Business Information Security Officer (BISO)

    ConfidentialHyderabad / Secunderabad, Telangana
    To manage & support Mumbai IT Operations conforming to Corporate IT Policies & Procedures, Vendor Management, corporate IT security, Compliance & governance defined to satisfy the business needs.Th...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Chief Technology Officer - Mumbai / Dubai Location - Product company

    Chief Technology Officer - Mumbai / Dubai Location - Product company

    Axis minds Consultancy Services LLPHyderabad, Telangana, India
    Axis Minds Consultancy Services LLP has been providing recruitment services since 2014, specializing in product, services, and startup companies, primarily focusing on mid-sized firms facing hiring...Show moreLast updated: 21 hours ago
    • Promoted
    IICS CAI

    IICS CAI

    LTIMindtreeHyderabad, Telangana, India
    Experience in IICS Application Integration components like Processes Service Connectors and process object.Ability to integrating diverse cloud applications seamlessly and efficiently and build hig...Show moreLast updated: 12 days ago
    • Promoted
    Senior Manager - Compliance & Information Security

    Senior Manager - Compliance & Information Security

    Blanket TechnologiesHyderabad
    Job Description : Position Title : Senior Manager Compliance & Information Security Domain : Healthcar...Show moreLast updated: 19 days ago
    • Promoted
    Senior Infrastructure Security & Compliance Engineer

    Senior Infrastructure Security & Compliance Engineer

    People Prime WorldwideHyderabad, Telangana, India
    Our client is a global digital solutions and technology consulting company headquartered in Mumbai, India.The company generates annual revenue of over $4. It has a workforce of around 86,000 profess...Show moreLast updated: 30+ days ago
    • Promoted
    Chief Technology Officer

    Chief Technology Officer

    SlayrobeHyderabad, IN
    Slayrobe is India’s first styling and confidence ecosystem built at the intersection of fashion, psychology, and AI — decoding how women make everyday style decisions. With 10,000+ users, paying sub...Show moreLast updated: 1 day ago
    • Promoted
    Head of Information Technology

    Head of Information Technology

    Talent Zone Consultantsecunderabad, telangana, in
    We’re Hiring : Head of Software Engineering – India / remote 🚀.We are looking for an experienced technology leader to head our software engineering team in India. The ideal candidate will bring a stro...Show moreLast updated: 30+ days ago
    • Promoted
    iBASIS - Chief Information Security Officer

    iBASIS - Chief Information Security Officer

    iBASISHyderabad
    Chief Information Security Officer Location : Hyderabad India.ABOUT iBASIS : iBASIS is the leading communication s...Show moreLast updated: 30+ days ago
    • Promoted
    CISO Professional

    CISO Professional

    ConfidentialHyderabad / Secunderabad, Telangana
    We are seeking a skilled and experienced professional to join our dynamic team as the Chief Information Security Officer (CISO). As a mid-sized software company, we are looking for a candidate who c...Show moreLast updated: 30+ days ago
    • Promoted
    Manager- Information Security, Vulnerability and Risk Management)

    Manager- Information Security, Vulnerability and Risk Management)

    Infosys BPMHyderabad, Telangana, India
    Role : Manager Information Security (Release Management).Cyber security & Security engineer, Release & Change Management, Vulnerability Management. Strong understanding of the insurance industry.Expe...Show moreLast updated: 30+ days ago
    • Promoted
    Information Security - Cloud Security

    Information Security - Cloud Security

    Antal InternationalHyderabad, Telangana, India
    Design, develop, and implement cloud security architectures and solutions for cloud environments.Identify major platform / solution deficiencies and define / craft pragmatic approaches on how to remedi...Show moreLast updated: 3 days ago
    • Promoted
    SOC Manager

    SOC Manager

    ConfidentialHyderabad / Secunderabad, Telangana
    Job Title : SOC Manager Client Engagement (India).Engagement Model : Client-dedicated, 16x7.As the SOC Manager for one of our client engagements, you will lead a dedicated team of analysts supporting...Show moreLast updated: 30+ days ago
    • Promoted
    (Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

    (Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

    Triune Infomatics Inchyderabad, telangana, in
    Role : Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response.Working Hours : Monday to Friday, 9 AM – 5 PM PST (U. Reporting To : Security Operations (SecOps) Leader – USA.We are seeki...Show moreLast updated: 30+ days ago
    • Promoted
    EY - Corporate Security Manager - Information Security

    EY - Corporate Security Manager - Information Security

    EY LLPHyderabad
    Your key responsibilities : - Oversee corporate security operations, ensuring compliance with state and local laws also coordinate with law enforcement agencies, reg...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    SOC / SIEM (15h Left)

    SOC / SIEM (15h Left)

    Tata Consultancy ServicesHyderabad, Telangana, India
    Greetings from TCS!!! Role : SOC Architect Experience : 10-13 years Location : Pan India Must-Have • • 1.Incidents investigation and Triaging 5. Threat Hunting Job Description : - Analyze complex ...Show moreLast updated: 1 hour ago