Information Security Manager
GGValappuzha, India19 hours ago
Job descriptionISO 27001 maintained with zero non-conformities Full compliance with CERT-IN guidelines and DPDP readiness documentation Quarterly VAPT assessments with remediation closure tracking Quarterly internal reviews to maintain compliance 100% client audit response turnaround within defined SLA Annual cyber tabletop drill executed with report and improvements tracked Internal and external audits passed with minimal observations Cyber Insurance aligned to evolving risks and policy coverage verified Conduct quarterly reviews to maintain all the compliance ISO 27001 Lead Implementer / Auditor CISSP / CISM DPDP Act / Privacy Certifications ISO / IEC 42001 (AI Governance Awareness) – Preferred ITIL v4 – Preferred B.E / B.Tech / M.Tech / Master in computer science Highly structured, audit-ready, and documentation-oriented Strong stakeholder engagement with Partners, Clients, cross functional teams, and Auditors Proactive risk identifier with a strong grasp of Indian and global compliance regimes Calm under pressure with strong incident response instincts Strategic mindset with tactical attention to operational control and reporting
Position Summary
The Information Security Lead will lead the enterprise security compliance agenda, ensuring full alignment with evolving regulatory frameworks such as ISO 27001, DPDP Act, CERT-IN, ITGC, and ISO / IEC 42001 (AI Governance) . This role is crucial in maintaining client trust, operational resilience, audit readiness, and risk posture across all firm systems, platforms, and third-party integrations.
Key Responsibilities
- Implement ISO 27001 in all offices.
- Lead and maintain ISO 27001 certification , including ISMS policy enforcement, risk treatment plans, SoA, internal audits, and management reviews.
- Implement and monitor compliance with :
- DPDP Act (India)
- CERT-IN Guidelines (incident response, remote access, logging, reporting)
- ITGC Controls (as part of statutory and internal audits)
- ISO / IEC 42001 – AI Governance framework and AI risk registers
- Build and maintain a firm-wide risk register for cyber, privacy, and technology controls.
- Define and review Information Security Policies, Data Classification, Encryption Standards, Third-party Risk , etc.
- Partner with Legal, Risk, and IT teams to map risk ownership and corrective action workflows.
- Own and manage all client security assessments, and due diligence questionnaires .
- Maintain a structured repository of pre-approved responses, certificates, and audit summaries.
- Engage with clients’ cybersecurity teams and support InfoSec audits or certifications demanded during onboarding or renewals.
- Lead GRC and access controls review across all IT systems and applications.
- Lead cyber insurance renewals , manage exposure data, and maintain claim readiness documentation.
- Define and test the incident response plan and conduct periodic tabletop exercises with senior leadership and external advisors.
- Lead BCP for the firm, and ensure it’s regularly tested.
- Ensure alignment with business continuity and disaster recovery strategies.
- Define quarterly and annual Vulnerability Assessment & Penetration Testing (VAPT) plan with top-tier CERT-IN certified vendors.
- Oversee closure of vulnerabilities and tracking of all red / amber findings.
- Coordinate with IT Infrastructure and App teams for secure configuration baselines (servers, endpoints, cloud).
- Track global trends and legal obligations in :
- AI & Data Ethics (align to ISO / IEC 42001)
- Cloud Security (including contractual obligations with SaaS providers)
- Encryption & Logging requirements under CERT-IN
- Draft internal advisories and update control frameworks accordingly.
- Lead the firm’s cybersecurity awareness and phishing simulation program .
- Conduct annual ISMS awareness campaigns and mandatory user certification programs.
- Build a security-conscious culture by regularly engaging with Practice Heads, Partners, and Business Services.
Key Deliverables
Certifications Required
Education
Leadership & Behavioral Competencies
Create a job alert for this search
Information Security Manager • alappuzha, India
Related jobs
%20Pvt.%20Ltd.)
- Promoted
- New!
Senior Information Security Operations Analyst
Cognex Corporationkottayam, India As a Senior Information Security Operations Analyst, you will lead the strategic development, implementation, and adoption of the overall Information Security Program.
You will lead the investigatio...Show moreLast updated: 18 hours ago
- Promoted
Head of Information Security
Cube Consultancy ServicesAlappuzha, Kerala, India Job Overview : We are seeking a highly skilled and adaptable business analyst who focuses on technology and B2B distribution.
This role involves working closely with both internal development teams a...Show moreLast updated: 30+ days ago
- Promoted
Senior Data Security & Governance Specialist
Integris GroupAlappuzha, IN The Senior Data Security & Governance Specialist is responsible for defining and enforcing governance, compliance, and security controls across modern data platforms built on Azure and Databricks.T...Show moreLast updated: 1 day ago
- Promoted
Lead Security Engineer
interface.aiKollam, IN Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
- Promoted
Sr. Lead - Cloud Security
Sycamore Informatics Inc.Kollam, IN Cloud security framework; Strong scripting skills with PowerShell and.Solid understanding of version control tools, particularly Git.
Experience with cloud platforms, including AWS, Azure and GCP.Pr...Show moreLast updated: 30+ days ago
- Promoted
Head of Information Security
HotelTrader LodgIQ (India) Pvt. Ltd.Kottayam, IN Hotel Trader is a 100% automated & cloud-based distribution management company providing the tools necessary for hotels to seamlessly connect to global demand with the click of a button.We fully em...Show moreLast updated: 30+ days ago
- Promoted
- New!
Senior Manager – Cyber Security & Digital Infrastructure
Taglynkkottayam, India We are seeking a seasoned cybersecurity professional to join our Corporate Cyber Security team as Senior Manager.This role is pivotal in strengthening the Group’s enterprise-wide security posture a...Show moreLast updated: 18 hours ago
- Promoted
Senior Manager IS Cyber Culture & Awareness
MashreqKottayam, IN The Cyber Security Awareness Specialist plays a critical role in maturing Mashreq Bank’s cyber security awareness program.
The specialist is responsible for fostering a culture where Cybersecurity i...Show moreLast updated: 1 day ago
- Promoted
Infrastructure Project Manager
AkkodisAlappuzha, IN Manage IT infrastructure projects, with a focus on network technologies and datacenter management.Lead and coordinate datacenter moves, migrations, and implementation projects.Ensure compliance wit...Show moreLast updated: 30+ days ago
- Promoted
- New!
Information Security Analyst II
P Square Solutions LLCkottayam, kerala, in Neology PSquare TechSystems (part of Neology Inc www.Industry - IT Product & Services and IT Consulting.Work Location - Smart City, Kochi, Kerala.
Shift timing based on projects – typically day / even...Show moreLast updated: 16 hours ago
- Promoted
Security & Compliance IT Specialist / Engineer
aecc - digital innovation hubKollam, IN Support the organisation’s security posture through monitoring, incident response coordination, and compliance activities.
Work closely with IT operations, engineering, and leadership to ensure syst...Show moreLast updated: 12 days ago
- Promoted
- New!
IT CYBER SECURITY (CISO)
Banking client if New Era Indiakottayam, kerala, in The purpose of the position is to manage, support, and coordinate all information security activities and programs for the branch.
He / she shall be primarily responsible for ensuring compliance to va...Show moreLast updated: 12 hours ago
- Promoted
- New!
Information Security Manager
questWalappuzha, kerala, in This is a full time role with our global client for their captive finance arm in Gurgaon.The position will be responsible for ensuring regulatory compliance under RBI guidelines for NBFCs, managing...Show moreLast updated: 12 hours ago
- Promoted
- New!
Cyber & Information Security
WEBSKITTERS TECHNOLOGY SOLUTIONS PRIVATE LIMITEDkottayam, kerala, in We are seeking a strategic, forward-thinking Head of Cyber & Information Security to lead the design, implementation, and governance of enterprise-wide information security frameworks across Webski...Show moreLast updated: 12 hours ago
- Promoted
- New!
Information Security Lead – Managed Security Services
Terralogickollam, India Security Assessments (Web, API, Mobile, Infra, Cloud) | Customer / Delivery Support.We are seeking an experienced Information Security Lead to drive and oversee end-to-end.
The role involves hands-on ...Show moreLast updated: 18 hours ago
- Promoted
- New!
Deputy Manager - Information Security
Hyundai Capital India Pvt Ltdalappuzha, kerala, in Maintain Documentations (Such as, policies, Processes etc.Develop and implement information security policies, procedures, and guidelines to protect organizational data, systems, and networks.Regul...Show moreLast updated: 12 hours ago
- Promoted
- New!
Cyber Security Manager
CareerUS SolutionsKollam, IN The Cyber Security Manager is responsible for.The Cyber Security Manager also leads a team of security professionals and collaborates across departments to strengthen the company’s overall.Develop,...Show moreLast updated: 16 hours ago
- Promoted
- New!
Information Security Manager
GGVkollam, India The Information Security Lead will lead the enterprise security compliance agenda, ensuring full alignment with evolving regulatory frameworks such as.
ISO 27001, DPDP Act, CERT-IN, ITGC, and ISO / IE...Show moreLast updated: 19 hours ago