Talent.com
Director of corporate Information Security
Director of corporate Information SecurityChargebee • Chennai, Tamil Nadu, India
Director of corporate Information Security

Director of corporate Information Security

Chargebee • Chennai, Tamil Nadu, India
6 days ago
Job description

Role Purpose

The Director / Head of Information Security will lead Chargebee’s Corporate Information Security function, working in close partnership with the Enterprise Cyber security (ECS) which manages product and infrastructure security and Corporate IT (which manages employee systems, devices, and operations) teams.

This role focuses on strengthening enterprise-wide governance, compliance, and risk management by designing new security capabilities while leveraging existing technical and operational controls across the broader ecosystem.

The leader will own the ISMS (ISO 27001 Program), Incident Management, Data Protection, Endpoint Security, and other GRC (Governance, Risk & Compliance) programs that protect our people, systems, and customers.

The ideal candidate will enable Chargebee to stay audit-ready, resilient, and trusted by customers as we continue to scale globally.

Key Responsibilities

1. Information Security Strategy & Governance

  • Lead the design and execution of Chargebee’s enterprise security strategy aligned with business goals
  • Own and continuously improve the Information Security Management System (ISMS) under ISO 27001, SOC 2, PCI DSS, and GDPR.
  • Establish and maintain the security governance framework, policies, and standards across business units.
  • Drive adoption of a unified security maturity model and track progress across all security domains.
  • Report quarterly to senior leadership on posture, risks, incidents, and roadmap progress.

2. Program Ownership Across Core AORs

Own and mature the following functions and teams :

  • ISMS & ISO 27001 Program – Governance, internal audits, controls, SoA, and certification management.
  • Corporate Incident Management (CIM) – Centralized IR process, playbooks, RCA / CAPA, and coordination of each incident, coordinating Product security, Global Technology Infrastructure and internal operations team
  • Data Leakage Prevention (DLP) – Policy, enforcement, and insider data risk management of corporate systems and corporate technology (Collaboration and knowledge management systems).
  • AI information Security Governance – AI risk reviews, usage policy, vendor evaluation, and compliance oversight of corporate information systems and Corporate Technology.
  • Security Awareness Program – Continuous education, phishing simulation, and behavioral improvement of corporate information systems and Corporate Technology.
  • Corporate IT Risk Management – Risk register, reviews, and treatment lifecycle of corporate information systems and Corporate Technology.
  • Business Continuity Program (BCP) & Data Recovery (DR) (Corporate) – Continuity governance, simulation testing, recovery validation of corporate information systems and Corporate Technology.
  • Policy Governance – Centralized authoring, review, communication, and adoption tracking of corporate information systems and Corporate Technology.
  • Access Governance (RBAC) – Access policy, JML automation, and certification reviews of all systems, product operations and corporate systems and technology.
  • Endpoint Security (Systems & Hardware) – Device hardening, monitoring, and compliance visibility of corporate information systems and Corporate Technology.
  • GTM Trust Enablement (RFP / RFI) – Customer trust documentation, security questionnaires, SLAs in response to processes and governance related questions referring to Chargebee’s corporate information systems and Corporate Technology.

    • 3. Operational Execution & Oversight

  • Establish a centralized incident classification and escalation model for all business functions.
  • Drive RCA & CAPA closure across incidents and audits; ensure risks are documented and tracked.
  • Maintain audit and evidence readiness for customer and external certifications.
  • Oversee DLP and endpoint monitoring, ensuring response workflows are automated and integrated.
  • Partner with ECS and IT to embed security by design into products, infrastructure, and employee systems.
  • Assist in responding to customer RFP’s to clarify and confirm Chargebee’s information security and corporate systems compliance

    • 4. Risk, Compliance, and Reporting

  • Maintain the enterprise security risk register; ensure high / critical risks have defined treatment and ownership.
  • Manage ISO internal audits and, surveillance reviews, and customer due diligence requests.
  • Develop and publish quarterly security KPIs and KRIs, including metrics on incidents, risk aging, compliance, and awareness.
  • Lead regular security governance reviews with senior leadership, providing updates on posture, risks, and strategic initiatives

    • 5. People Leadership & Culture

  • Build and lead a high-performing infosec team across GRC, Risk, DLP, IR, and Awareness.
  • Partner cross-functionally with IT, ECS, Legal, HR, Comms, Risk & Compliance, and GTM enablement functions..
  • Promote a culture where security is everyone’s responsibility through communication, enablement, and collaboration.
  • Mentor, coach, and grow internal talent to scale the security program sustainably.
    • Create a job alert for this search

    Information Security • Chennai, Tamil Nadu, India

    Related jobs
    Chief Information Security Officer

    Chief Information Security Officer

    Confidential • Chennai
    Security Strategy & Governance.Develop and implement the organization's comprehensive information security strategy and roadmap. Ensure compliance with IRDAI regulations, ISO 27001, and other applic...Show more
    Last updated: 19 days ago • Promoted
    Chief Information Security Officer (CISO) Large Agri Enterprise

    Chief Information Security Officer (CISO) Large Agri Enterprise

    Riverforest Connections Private Limited • Chennai, Tamil Nadu, India
    The Chief Information Security Officer (CISO) will be responsible for establishing and leading the information security strategy governance and execution across the Groups NBFC and Agro Trading ent...Show more
    Last updated: 21 days ago • Promoted
    Hustek Business Solutions - Senior Information Security Engineer -iAM

    Hustek Business Solutions - Senior Information Security Engineer -iAM

    Hustek Business Solutions • Chennai
    Job Title : Senior Software Engineer InfoSec (IAM) Location : Chennai Experience : 610 years (or as req...Show more
    Last updated: 30+ days ago • Promoted
    Senior Information Security Engineer

    Senior Information Security Engineer

    Epergne Solutions • Chennai, Tamil Nadu, India
    Quick Apply
    Senior Information Security Engineer.Job Roles & Responsibilities.Lead vulnerability assessments and policy compliance scans across on prem, cloud, container (Docker / Kubernetes), database, and ...Show more
    Last updated: 30+ days ago
    Director, Enterprise Technology and Business Intelligence

    Director, Enterprise Technology and Business Intelligence

    The Edge Partnership - The Edge in Asia • Chennai, IN
    Our client is a global leader in the healthcare and life sciences industry and has a strong reputation for improving patient care through advanced technology and intelligent operations.The ideal pr...Show more
    Last updated: 3 hours ago • Promoted • New!
    Director / Head of Security Operations Center

    Director / Head of Security Operations Center

    Resourcetree Global Services • Chennai
    Description : - Key Competencies : - Strategic Vision Ability to align SOC service evolution with MSSP business objectives.T...Show more
    Last updated: 25 days ago • Promoted
    Head - Cloud Infrastructure & Security

    Head - Cloud Infrastructure & Security

    Confidential • Chennai
    Lead the cloud engineering team, setting strategic direction and establishing best practices for cloud adoption, architecture, and operations. Design and implement scalable, secure, and cost-effecti...Show more
    Last updated: 8 days ago • Promoted
    Information Technology Security Manager - CISSP / CISA

    Information Technology Security Manager - CISSP / CISA

    Confidential • Chennai, India
    Job Location : Karapakkam OMR, Chennai.Key Responsibilities : To assist the IT Security Head in the following : .Establish and maintain IT control environment and framework.Develop and maintain IT P...Show more
    Last updated: 19 days ago • Promoted
    Information Security Manager

    Information Security Manager

    Confidential • Chennai, India
    Review and update of the information asset register in accordance with RBI, SEBI, IRDAI, UIDAI, IT Outsourcing, Data Localization and ISO 27001 : 2013 requirements. Responsible for managing, tracking,...Show more
    Last updated: 19 days ago • Promoted
    Security Director

    Security Director

    Confidential • Chennai, India
    Banyan Software provides the best permanent home for successful enterprise software companies, their employees, and customers. We are on a mission to acquire, build and grow great enterprise softwar...Show more
    Last updated: 19 days ago • Promoted
    Information Security Manager

    Information Security Manager

    Northern Arc Capital • Chennai, Tamil Nadu, India
    Review and update of the information asset register in accordance with RBI, SEBI, IRDAI, UIDAI, IT Outsourcing, Data Localization and ISO 27001 : 2013 requirements. Responsible for managing, tracking,...Show more
    Last updated: 16 days ago • Promoted
    Sr. Security Engineer - Information Security

    Sr. Security Engineer - Information Security

    PINKVILLA • Chennai, IN
    Pinkvilla is seeking a dynamic Information Security professional, who will contribute to strengthening our security posture by working closely with cross-functional teams, monitoring threats, secur...Show more
    Last updated: 3 hours ago • Promoted • New!
    Chief Information Security Officer

    Chief Information Security Officer

    RiverForest Connections • Chennai
    The Chief Information Security Officer (CISO) will be responsible for establishing and leading the information security strategy, governance, and execution across the Group's NBFC and Agro Tra...Show more
    Last updated: 30+ days ago • Promoted
    Senior Information Security Engineer

    Senior Information Security Engineer

    Confidential • Chennai, India
    Senior Information Security Engineer.Lead vulnerability assessments and policy compliance scans across onprem, cloud, container (Docker / Kubernetes), database, and web environments using tools like ...Show more
    Last updated: 19 days ago • Promoted
    Information Security Engineer

    Information Security Engineer

    Confidential • Chennai, India
    The Information Security Engineer is responsible for implementing and maintaining Radial's security architecture, including procedures, to ensure the security and compliance of Radial's infrastruct...Show more
    Last updated: 19 days ago • Promoted
    Cybersecurity Director

    Cybersecurity Director

    Vriba Solutions • chennai, tamil nadu, in
    The Cybersecurity Director is responsible for the strategic vision and scaling of the cybersecurity practice to serve external clients. This leader will ensure robust security governance, risk manag...Show more
    Last updated: 21 hours ago • Promoted • New!
    Chief Information Security Officer (CISO) - Large Agri Enterprise

    Chief Information Security Officer (CISO) - Large Agri Enterprise

    Riverforest Connections Private Limited • Chennai, TN, Tamil Nadu, India
    Aptos,sans-serif"> Role Overview <...Show more
    Last updated: 23 days ago
    Head - Information Security

    Head - Information Security

    Saaki Argus & Averil Consulting • Chennai, Tamil Nadu, India
    Quick Apply
    Will be responsible for developing and implementing the enterprise vision, strategy, and security program to ensure information assets and technologies are adequately protected.Maintaining a curren...Show more
    Last updated: 30+ days ago