Security and Compliance Director

FPL TechnologiesPune, Republic Of India, IN

30+ days ago

Job description

About the company

Credit cards haven't changed much for over half a century so our team of seasoned bankers, technologists, and designers set out to redefine the credit card for you - the consumer. The result is OneCard - a credit card reimagined for the mobile generation. OneCard is India's best metal credit card built with full-stack tech. It is backed by the principles of simplicity, transparency, and giving back control to the user.

Key Responsibilities :

Security Strategy and Governance :

Develop, implement, and maintain a comprehensive information security roadmap and strategy aligned with business objectives.
Establish, mature, and enforce security policies, standards, and procedures to ensure a robust governance framework.
Collaborate with executive leadership on budget planning, forecasting, and management for security-related expenditures.

Audit and Compliance Management :

Lead and manage all aspects of internal and external audits, including those from regulatory bodies and clients (vendor due diligence).

Serve as the primary point of contact for auditors, ensuring all evidence requests are fulfilled accurately and on time.

Drive the remediation and closure of audit findings by coordinating with relevant technical and business teams.

Ensure ongoing compliance with key standards and regulations, including ISO 27001, ISO 22301, Credit Information Companies (CIC), and data localization laws.

Conduct routine compliance activities, such as management review meetings, to maintain certifications and ensure continuous improvement.

Risk and Vendor Management :

Establish and operate a robust vendor due diligence (VDD) program, working with internal teams and external audit vendors to assess third-party risk.

Oversee the end-to-end financial process for security vendors, including obtaining proposals, securing internal approvals, and tracking payments.

Identify, assess, and communicate security risks to the company's leadership and other key stakeholders.

Security Operations and Collaboration :

Act as the primary security advisor for the company, working closely with various technical teams and Technology Service Providers (TSPs).

Provide expert guidance and oversight for the implementation and management of security controls across key domains, including :

Cloud Security :

Advise on best practices for securing AWS environments.

Application Security : Champion the integration of security into the SDLC (SAST / DAST, penetration testing).

Network & Endpoint Security :

Guide the deployment and configuration of firewalls, WAF, IDS / IPS, and EDR solutions.

Identity & Access Management (IAM) : Ensure robust implementation of SSO, MFA, and privileged access controls.

Qualifications and Experience :

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.

5-6 years of progressive experience in information security, with a focus on governance, risk, and compliance.

Demonstrated experience in developing or significantly maturing an information security program.

In-depth, hands-on experience leading and facing audits for frameworks like ISO 27001, SOC 2, or PCI DSS.

Professional certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor / Implementer are highly desirable.

Skills and Competencies :

Leadership and Ownership : A strategic leader with the ability to operate with a high degree of autonomy. Possesses a strong sense of ownership and takes full responsibility for the security posture of the company.

Independent Decision-Making : Proven ability to make critical, well-reasoned decisions independently and confidently drive security initiatives forward.

Stakeholder Management : Exceptional communication and interpersonal skills, with the ability to effectively articulate complex security concepts and risks to diverse stakeholders, including company directors, executive leadership, and heads of technology departments.

Broad Technical Proficiency : Strong, advisory-level knowledge across multiple security domains (Cloud, Network, Application, Endpoint, IAM).

Compliance Expertise : Deep understanding of ISO 27001, ISO 22301, CIC, and data localization principles.

Creative Problem-Solving : A proactive and innovative approach to identifying and solving complex security challenges in a dynamic environment.

Create a job alert for this search

Director Compliance • Pune, Republic Of India, IN

Related jobs

Promoted

Director of Compliance Technology Solutions

eClerxRepublic Of India, IN

Technical Delivery Lead – BFSI | KYC & Compliance Platforms.Banking & Financial Services (BFSI).The ideal candidate combines deep. NET microservices, cloud platforms, and regulatory systems (AML / KYC...Show moreLast updated: 20 days ago

Promoted

Quality Compliance Director

Shalina HealthcareRepublic Of India, IN

Shalina Healthcare is one of the largest pharmaceutical companies in sub-Saharan Africa.For the last 40 years we have made it our mission to provide quality medicines to those who need it the most....Show moreLast updated: 18 days ago

Promoted

Financial Crime Compliance Director

eClerxPune, Republic Of India, IN

Job Title -Finance- FCC - Program Manager (VP).The leader must demonstrate an ability to anticipate, understand, and act on evolving customer needs, both stated and unstated.Through this, he / she mu...Show moreLast updated: 21 days ago

Promoted

QC & Compliance Director

MatchLab TalentRepublic Of India, IN

Lead and manage the Quality Control team, ensuring effective allocation of responsibilities, mentoring, and performance monitoring. Establish, implement, and continually improve QC systems aligned w...Show moreLast updated: 21 days ago

Promoted

Director of Regulatory Compliance

Pay10 IndiaNew Delhi, Republic Of India, IN

Regulatory Compliance (RBI & Other Authorities).Develop, implement, and maintain compliance programs in line with RBI regulations for PA, cross-border PA, and PPI license holders.Act as the primary...Show moreLast updated: 21 days ago

Promoted

Cybersecurity Director

XL AdvisorsRepublic Of India, IN

Chief Information Security Officer (CISO).The CISO will define and execute the.The role involves reporting to the.Board and executive leadership. ISO 27001, NIST, GDPR, and PCI-DSS.The candidate sho...Show moreLast updated: 19 days ago

Promoted

Director Csit / Cyber Security

Symbiosis Skills & Professional UniversityPune, Republic Of India, IN

Academic background is necessary).Develop and implement strategic plans for the CSIT department in alignment with institutional goals. Foster innovation in teaching, learning, and research in emergi...Show moreLast updated: 30+ days ago

Promoted

Security and Safety Director

Marriott InternationalRepublic Of India, IN

Manages the daily functions of the department to ensure protection of property assets, employees, guests and property.Maintains logs, certifications and documents required by law and Standard Opera...Show moreLast updated: 18 days ago

Promoted

Director, Security Vulnerability Management Program

M&GRepublic Of India, IN

Vice President Enterprise Security (Vulnerability Management).The purpose of this role is to lead and oversee the organisation’s Vulnerability Management program. The role is responsible for managin...Show moreLast updated: 10 days ago

Promoted

Director of Security Operations

MindsprintChennai, Republic Of India, IN

Director – Head of Security Operations Center.Strategic Vision – Ability to align SOC service evolution with MSSP business objectives. Technical Skills – Deep understanding of modern detection and r...Show moreLast updated: 19 days ago

Promoted

Legal and Compliance Director

ARA's ClientRepublic Of India, IN

ARA’s Client is a leading tech-consulting company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of th...Show moreLast updated: 21 days ago

Promoted

Vice President Enterprise Security (Vulnerability Management)

M&GRepublic Of India, IN

Promoted

SOC Operations Director

MindsprintChennai, Republic Of India, IN

Promoted

Security Awareness Solutions Director

EC-CouncilRepublic Of India, IN

Job Title – Practice Unit Head- Security Awareness.EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and develo...Show moreLast updated: 10 days ago

Promoted

Governance, Risk, And Compliance Lead

Art Technology and SoftwareCochin, Republic Of India, IN

The GRC Lead will be responsible for overseeing the governance, risk management, and compliance functions within the organization. Strategic Governance & Leadership.Lead the design, execution, and m...Show moreLast updated: 29 days ago

Promoted

Governance & Compliance Director

TresVistaPune, Republic Of India, IN

The corporate finance department in the company handles all the financial and investment decisions.It primarily focuses on maximizing shareholder value through long-term and short-term financial pl...Show moreLast updated: 20 days ago

Promoted

Senior Application Security Program Director

ARCONRepublic Of India, IN

We are seeking a highly experienced and strategic-minded Senior Manager of Application Security to lead our security initiatives. The ideal candidate will be a seasoned leader with a deep understand...Show moreLast updated: 21 days ago

Promoted

Director of Accounting and Compliance

Searce IncPune, Republic Of India, IN

Accounting & Taxation | Director.A revenue-owning, outcome-delivering.Searce's finance function, driving.You're not just a finance leader. .You lead by doing : optimizing processes, building robust r...Show moreLast updated: 30+ days ago