1,501 Security Manager jobs in India

About this role

This is a leadership position that involves overseeing the security compliance program for physical security officer services at data centers.

The ideal candidate will have experience in managing geographically distributed teams and ensuring compliance with internal standards and external regulatory requirements such as ISO 27001, PCI, FISMA, and others.

Responsibilities include recruiting, supervising, and mentoring a team of Regional Compliance Specialists, conducting audits and evaluations, and implementing corrective actions to ensure compliance.

This role also involves working closely with data center operations to identify potential compliance risks and implementing solutions for improvement.

Main responsibilities

">
• Manage a geographically distributed team of Regional Compliance Specialists
">
• Conduct and support audits and evaluations to ensure compliance with established procedures and policies
">
• Identify potential compliance risks and implement solutions for improvement
">
• Deliver clear and timely reports, conduct training sessions, lead webinars, and facilitate meetings to enhance compliance awareness
">
• Support process optimization by identifying gaps and improving workflow efficiency
">

You will thrive in this role if you have

">
• A bachelor's degree in a related field, such as business administration or law
">
• At least 5 years of experience in compliance management or a related field
">
• Experience in managing geographically distributed teams
">
• Strong communication and interpersonal skills
">
• Ability to analyze complex information and make informed decisions
">
• Knowledge of industry regulations, such as ISO 27001, PCI, FISMA, and others
">

We offer

">
• A competitive salary and benefits package
">
• Ongoing training and development opportunities
">
• The chance to work with a dynamic and dedicated team
">
• The opportunity to make a meaningful contribution to the organization
">

Our mission is to deliver exceptional security compliance solutions worldwide.

The Lead Regional Compliance Specialist plays a pivotal role in ensuring that our global guarding services account meets the highest standards of regulatory adherence and accountability.

This involves overseeing a geographically distributed team of regional compliance specialists who provide expert support for physical security compliance across multiple data center locations.

The successful candidate will be responsible for managing the security compliance program specific to physical security officer services at data centers, ensuring all sites meet internal standards and external regulatory requirements.

To achieve this, they will conduct audits and evaluations, implement procedures to ensure compliance with established policies, and identify potential risks and develop strategies for improvement.

In addition to these responsibilities, the Lead Regional Compliance Specialist will deliver timely reports, conduct training sessions, lead webinars, and facilitate meetings to enhance compliance awareness among stakeholders.

We are seeking a seasoned professional with a bachelor's degree in business administration, public administration, law or a related field and 5+ years of progressive compliance experience.

About the Position:

• The Compliance Director manages a geographically dispersed team of Regional Compliance Specialists who support physical security compliance across multiple data center locations.
• This role involves overseeing the security compliance program specific to physical security officer services at data centers, including ensuring all sites meet internal standards and external regulatory requirements.

About this role

The Lead Regional Compliance Specialist will be responsible for managing a geographically distributed team of Regional Compliance Specialists who support physical security compliance across multiple data center locations.

This team-oriented role involves overseeing the security compliance program specific to physical security officer services at data centers, ensuring all sites meet internal standards and external regulatory requirements.

The successful candidate will have experience in developing compliance frameworks, conducting audits, and implementing control measures to manage risk. They will also be responsible for reporting on compliance findings, recommending corrective actions, and collaborating across teams to improve policies and overall security posture.

• Recruit, supervise, and mentor a team of Regional Compliance Specialists
• Conduct and support audits and evaluations, ensuring compliance with established procedures and policies
• Work closely with data center operations to identify potential compliance risks and implement solutions for improvement

• A bachelor's degree in business administration, public administration, law, or a related field
• 5+ years of progressive compliance experience, or a combination of both, as well as 3+ years of experience managing people
• Experience supporting an operations team in a datacenter environment and ISO9001 or ISO 27001 certification

• A highly competitive and industry leading salary package
• Access to continuous learning, training programs, and career growth pathways designed to help you succeed and advance
• Opportunities to travel locally and internationally

Project Role: ISO 27001 Implementor/Auditor

Work Experience: 5+ years.

Work location: Bangalore/Mumbai

Mode of work: Hybrid

Work Timing: 2:00 PM To 11:00 PM

Job Summary:

Support the design, implementation, and continual improvement of a single, multi‑country ISO/IEC 27001:2022‑certified ISMS , consolidating existing regional/country/product certifications and practices into a harmonized, scalable, and auditable framework . Align global ISMS and regional Security Management Plans (SMPs) while accommodating local regulatory nuances and cultural contexts.

Plan and conduct independent audits to assess compliance with regulations, guidelines, and operating procedures. Prepare and distribute reports of findings to supervisor, operations staff, management, and customers. Provide consultation in interpretation of regulations, guidelines, policies, and procedures. Support management in promotion and assessment of compliance to regulations, guidelines and corporate policies.

Responsibilities:

A. Global ISMS Consolidation & Certification

• Build and lead a multi‑site certification program (scope definition, site selection, audit sampling logic, audit calendar), leveraging the most mature regions/entities and existing certificates
• Consolidate and maintain the global Statement of Applicability (SoA 27001:2022), including Annex‑A control coverage, compensating controls, and justifications;
  ensure SoA traceabilityto IISF controls and regional SMPs.
• Establish an evidence lifecycle (create–collect–curate–reuse) integrated with our document repositories to streamline internal/external audits.

B. Risk, Governance & Control Integration

• Resolve conflicts and identify gaps in policies/standards and manage pragmatic local exceptions with formal rationale.
• Drive risk assessment & treatment consistency (method, scoring, residual risk acceptance), integrating into GRC tooling and SMP governance.
• Design assurance mapping across ISO 27001, SOC 2, and client questionnaires to reduce duplication and improve response speed/quality.

C. Audit Readiness & Continuous Improvement

• Plan and conduct internal audits and readiness assessments;
  track findings, and effectiveness checks to closure through the document repositories
• Support external certification audits .

Qualifications:

• Bachelor’s degree or equivalent experience in information security, technology, or related field.
• 5–8+ years implementing and operating ISO/IEC 27001 ISMS (at least one end‑to‑end certification ;
  multi‑site/global strongly preferred).
• Hands‑on experience with ISMS consolidation/harmonization (SoA rationalization, control baselining, evidence management, audit orchestration).
• Familiarity with SOC 2 and translating between frameworks to reduce redundant controls/tests.
• Proven cross‑cultural leadership : delivering outcomes across regions, time zones, and diverse compliance cultures.

Preferred Qualifications

• Certifications: ISO 27001 Lead Implementer/Lead Auditor , CISSP/CISM/CISA/CRISC .
• Experience working with or mapping corporate / regional SMPs , or similar enterprise security frameworks.
• Exposure to GRC platforms
• Sector familiarity (clinical research, pharma, healthcare) and applicable regulatory ecosystems.

Job Title: IT Compliance Manager

Location: Mumbai

Company Overview:

HDFC Securities is a leading stockbroking company and a subsidiary of HDFC Bank, one of the world’s largest financial services conglomerates. With a strong emphasis on technology and innovation, HDFC Securities offers a diverse range of investment and trading services to retail and institutional clients. Our commitment to technological advancement and regulatory compliance sets us apart as a trusted partner in the financial industry.

Job Overview: As an IT Compliance manager at HDFC Securities, you will work closely with the senior management and team to ensure that HDFC Securities Ltd adheres to all relevant regulatory requirements and industry standards. You will play a pivotal role in safeguarding our IT operations against compliance breaches and mitigating risks effectively. The ideal candidate will have 5 -8 years of experience in compliance roles within the banking or capital markets sector and possess strong leadership and communication skills.

Key Responsibilities:

1. Compliance Policy Development and Maintenance

- Assist in developing, implementing, and maintaining comprehensive IT compliance policies and procedures in alignment with Indian banking and capital markets regulations.

- Collaborate with the senior management and team to review and update compliance policies and procedures regularly to reflect changes in laws, regulations, and organizational processes.

2. Regulatory Compliance Monitoring

- Support in monitoring the IT environment to ensure ongoing compliance with external regulations such as SEBI & RBI regulations, SOX, and Data Privacy Laws, as well as internal policies. - Stay updated on regulatory changes and assist in assessing the impact of these changes on IT operations and compliance posture.

3. Compliance Risk Assessment

- Contribute to regular risk assessments to identify potential compliance risks and vulnerabilities within IT systems and processes.

- Assist in developing and implementing risk mitigation strategies to address identified risks effectively.

4. Compliance Project Delivery

- Work closely with IT teams across the organization to ensure compliance projects are scoped, documented, and executed effectively, meeting all regulatory and business requirements.

5. Audit and Reporting

- Assist in coordinating and supporting internal as well as external compliance audits such as Statutory audit, Sox audit, HDFC Bank Audit, Cyber Security audit, SEBI & NSE/BSE audit ensuring thorough examination of all IT systems and processes for compliance.

- Contribute to the preparation and submission of compliance reports to HDFC Bank, senior management, regulatory bodies, and other important stakeholders.

6. Training and Awareness

- Support in developing and delivering compliance training programs to educate employees on compliance policies, procedures, and their responsibilities.

- Stay informed about the latest regulatory changes and cybersecurity threats, contributing to adjustments in compliance strategies as needed.

7. Incident Management and Response

- Assist in establishing and managing a process for handling compliance incidents, including detection, investigation, reporting, and resolution.

- Support in ensuring timely reporting of compliance incidents to relevant authorities as required by law or regulation.

8. Vendor and Third-Party Compliance

- Participate in assessing and monitoring the compliance of third-party vendors and service providers with the organization's compliance requirements and standards.

- Assist in ensuring contractual agreements with vendors include necessary compliance clauses and obligations.

9. Stakeholder Engagement

- Collaborate with various stakeholders across HDFC group companies, sharing best practices and leveraging synergies in compliance efforts.

- Support in representing HDFC Securities in various group-level and external forums, contributing to industry-wide discussions on regulatory matters.

Qualifications, Experience & Expertise

- Bachelor’s or Master’s degree in Engineering, Technology, IT, Cybersecurity, or a related field.

- Minimum of 5 - 8 years of experience within the banking or capital markets sector, with a focus on IT and cybersecurity.

- Sound knowledge of the regulatory landscape governing Indian financial institutions, including SEBI and RBI guidelines.

- Strong project management skills, with the ability to collaborate effectively with cross-functional teams. - Excellent interpersonal and communication skills, with the ability to engage effectively with internal and external stakeholders.

- Certifications such as Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP), or equivalent, are highly desirable.

- Demonstrated leadership abilities and strategic thinking in driving compliance initiatives.

- Familiarity with relevant regulations and compliance standards pertaining to management of IT systems in a regulated environment.

Benefits

- Competitive salary and benefits package.

- Opportunity for career growth and development.

- Exposure to a wide range of internal audit and IT governance functions

About Sagility

Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the healthcare system. Sagility combines industry-leading technology and transformation-driven BPM services with decades of healthcare domain expertise to help clients draw closer to their members. We optimize the entire member/patient experience through service offerings for clinical, case management, member engagement, provider solutions, payment integrity, claims cost containment, and analytics.

Leading industry analyst firms have consistently cited our service excellence, breadth of offerings, and ability to execute. The most recent being recognized as a leader for Healthcare Payer Operations in 2022 & 2023 as a part The Healthcare Payer Operations PEAK Matrix® Assessment report by Everest Group. To learn more about our recognitions please visit our AWARDS SECTION

We have 40,000+ employees in 15 cities across 5 countries – India, Philippines, USA, Jamaica, and Colombia.

Role Overview

The InfoSec GRC Officer will be responsible for driving and maintaining the organization’s governance, risk, and compliance framework. This includes ensuring robust account hygiene practices, managing account-level GRC reporting, aligning with HiTrust certification requirements, overseeing governance processes, and mitigating third-party risks. The role demands a proactive and detail-oriented professional with strong analytical and communication skills.

Key Responsibilities

Account Hygiene & GRC Reporting

- Monitor and enforce account hygiene standards across infrastructure and application layers.

- Develop and maintain dashboards and reports for account-level GRC metrics.

- Collaborate with IT and security teams to ensure timely remediation of hygiene issues.

- Conduct periodic reviews and audits of account configurations and access controls.

Governance, Risk & Compliance (GRC)

- Implement and maintain GRC frameworks aligned with industry standards and regulatory requirements.

- Support internal and external audits, including evidence collection and gap remediation.

- Maintain risk registers and track mitigation plans across business units.

- Facilitate risk assessments and control testing activities.

HiTrust Compliance

- Lead initiatives to align with HiTrust CSF requirements.

- Coordinate with stakeholders to ensure documentation, controls, and evidence meet HiTrust standards.

- Support readiness assessments and certification processes.

Governance Processes

- Define and document governance policies, procedures, and workflows.

- Ensure consistent application of governance principles across projects and operations.

- Conduct training and awareness sessions on governance best practices.

Third Party Risk Management

- Evaluate and monitor third-party vendors for InfoSec compliance and risk exposure.

- Conduct due diligence, risk assessments, and periodic reviews of vendor security posture.

- Maintain third-party risk inventory and ensure contractual obligations are met.

Qualifications & Skills:

- Bachelor’s degree in information security, Risk Management, or related field.

- 5+ years of experience in GRC, cybersecurity, or IT compliance roles.

- Strong understanding of HiTrust CSF, ISO 27001, NIST, and other regulatory frameworks.

- Experience with GRC tools (e.G., Archer, ServiceNow GRC, MetricStream).

- Excellent analytical, documentation, and communication skills.

- Ability to work independently and collaboratively in a fast-paced environment.

Preferred Certifications

- Certified Information Systems Auditor (CISA)

- Certified in Risk and Information Systems Control (CRISC)

- HiTrust Certified Professional (HCP)

- ISO 27001 Lead Implementer or Auditor

Job title: Lead Regional Compliance Specialist - APAC

Location : India – open to Chennai/Hyderabad/Pune

About our team

We are a dynamic, dedicated team that provides management and support for a global guarding services account that spans across 30+ countries. Our client is an industry-leading datacenter organization, and we pride ourselves in delivering best-in-class solutions through our teams made up of Security Operations, Business Operations, Shared Services, Threat and Incident Management, Environmental Health and Safety, and Human Resources. As part of this team, you’ll work alongside a group of professionals that are committed to excellence and innovation in a fast-paced, matrixed environment. The Compliance team is responsible for ensuring that compliance procedures are consistently applied and monitored, fostering a culture of accountability and regulatory adherence within the organization. The team develops, monitors, and enforces processes designed to prevent security violations, minimize risk, and ensure consistent operational performance across locations. This includes conducting audits and evaluations, identifying areas of non-compliance or vulnerability, and recommending or implementing corrective actions.

About the role

The Lead Regional Compliance Specialist for the region manages a geographically distributed team of Regional Compliance Specialists (RCS) who support physical security compliance across multiple data center locations. This team oriented role is tasked with overseeing the security compliance program specific to physical security officer services at data centers. This includes ensuring all sites meet internal standards and external regulatory requirements such as ISO 27001, PCI, FISMA , and others. The role is both strategic and operational, involving the development of compliance frameworks, conducting audits, and implementing control measures to manage risk. The position also involves reporting on compliance findings, recommending corrective actions, and collaborating across teams to improve policies, training, and overall security posture.

What you’ll do

In this role, the Lead Regional Compliance Specialist will recruit, supervise, and mentor a team of Regional Compliance Specialists. They will conduct and support audits and evaluations, ensuring compliance with established procedures and policies. This role involves working closely with data center operations to identify potential compliance risks and implementing solutions for improvement. Additional responsibilities include delivering clear and timely reports, conducting training sessions, leading webinars, and facilitating meetings to enhance compliance awareness. The Lead Specialist will also support process optimization by identifying gaps and helping improve workflow efficiency, all while maintaining a customer-centric and solutions-focused approach.

What you need to apply

We’re looking for a seasoned professional with a bachelor’s degree in business administration, public administration, law or a related field and 5+ years of progressive compliance experience, or a combination of both, as well as 3+ years of experience managing people. You will be a standout applicant if you have experience supporting an operations team in a datacenter environment and ISO9001 or ISO 27001 certification.

You should bring exceptional organizational and time management skills, with the ability to juggle multiple priorities seamlessly with sound judgement. Attention to detail and a proactive, solution-oriented mindset are key to thriving in this role. Your senior leadership team will appreciate it if you can anticipate the needs of the team to stay ahead of the curve in a fast-paced, compliance-driven environment.

You’ll also need to be highly collaborative across global and regional teams, handling multiple priorities, and delivering results under tight deadlines with a high degree of accuracy. You’ll need to be comfortable presenting to senior leadership and large audiences and be skilled with communication – both written and verbal – across diverse cultures. It’s also critical that you are proficient in Microsoft office tools, especially Excel, Word, PowerPoint, and SharePoint.

All applicants to this role must have reliable means of communication, reliable means of transportation (public or private) to get to/from work, the legal right to work in the country where the position is located, and the ability to speak, read and write in English proficiently.

This position involves travel (Up to 50% of the time) , so a passion for travel (and a valid passport) and the flexibility to accommodate domestic and international trips are a must. It will also require you to work nights and weekends on occasion, so you’ll need to be comfortable flexing your schedule when needed.

What you’ll get

We offer more than just a job — we offer the chance to be part of a supportive, collaborative team where your growth and contributions truly matter. In this role, you’ll thrive in a fast-paced, dynamic environment while working on a prestigious multinational client account, giving you firsthand exposure to global operations and cross -regional collaboration. Beyond the day-to-day, you’ll enjoy opportunities to travel both locally and internationally.

Be rewarded with a highly competitive and industry leading salary package.

We’re committed to employee development, with access to continuous learning, training programs, and career growth pathways designed to help you succeed and advance

The extra stuff

Candidates must be at least 18 years of age and possess the legal right to work in India. A valid passport or ability to obtain a passport immediately is essential. Candidates must also be willing to undergo the company’s pre-employment screening process, which includes a background check and drug screening.