264 Technology Risk jobs in India

**Description**
At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.
Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.
**How will you make an impact in this role?**
Responsible for contacting clients with overdue accounts to secure the settlement of the account. Also they do preventive work to avoid future overdues with accounts that have a high exposure.
The Information Security Manager function resides within the Regional Information Security Office and is responsible for control enforcement, cybersecurity awareness, reporting and enablement for American Express in Asia Pacific Region. The incumbent will be responsible for helping design and execute a regionalized information security risk management strategy closely informed by the APAC regulatory landscape and AXP business interests, including third party service providers, affiliates, and legal entities.
Key responsibilities include:
+ Assist with the interconnection between core enterprise information security functions and American Express Asia-pacific legal entities
+ Contribute to the first line information security risk management and reporting
+ Assess the design and operating effectiveness of information security controls upon which the American Express Asia-pacific legal entities rely to protect Confidentiality, Availability, and Integrity of Information and Systems
+ Collaborate with General Counsel, Market Compliance, and the American Express Privacy Office to support market regulatory requirements
+ Lead the information security related aspects of regulatory changes and projects
+ Identify, scope, and investigate new information security risks, including assisting with assessment of key American Express third-party providers in the region
+ Deliver leadership reporting and risk metrics that demonstrate the effectiveness of the cyber security program to American Express Asia-pacific legal entities.
+ Consult on market-specific Business & Technologies projects to ensure appropriate security protection
+ Craft responses to Information Security audit and examination requirements for the market
+ Operate as part of the extended Information Security team in support of all security and compliance initiatives
+ Collaborate with global teams to publish market specific Information Security KPIs/KRIs
+ Participate in represent regional information security office in APAC risk committees
+ Participate in meetings with regulatory bodies in Asia Pacific and present Information security posture of American Express
**Required Skills:**
+ 5-10 years of Information Security experience
+ Experience working with regulators, such as METI, in complex regulated businesses
+ Broad understanding of information security disciplines with emphasis on vulnerability management, data protection, infrastructure security, application security, identity and access, incident management and data analytics
+ Strong in risk management. Ability to link threats to risk tolerance and control effectiveness measurements.
+ Understanding of cyber regulatory landscape in Asia Pacific Region
**Required Work Experience, Education, Certification / Training:**
+ Bachelor's degree in computer science, information systems, network security or other related field. Master's degree preferred
+ Professional certifications (CISSP, CRISC, CISA, PCI, CISM or equivalent)
+ At least 5 years' work experience in information security or technology risk management
+ Technical background with hands-on experience across a variety of technologies
+ Proficiency in information security, risk management and audit (risk/security policies, procedures and controls)
**Required Knowledge, Skills and Abilities:**
+ Exceptional verbal and written communication skills
+ Ability to lead and drive discussions on technical matter with senior business stakeholders along with partners and regulators
+ Fluency in English language
+ Requires knowledge of a minimum of several business and technical functional capabilities in some of the following areas: security architecture; security engineering; threat management; vulnerability management; electronic discovery; computer and data breach incident management; data protection; forensics; 3rd party/vendor management; security monitoring; cryptography; cloud security; security operations and administration; access management; security policies and standards; security awareness; business continuity; disaster recovery; IT risk management and controls; web security; data security; network security; system security, technology operations and compliance
+ Strong knowledge and experience in risk assessment and relevant methodologies including quantitative risk management techniques
+ Knowledge of applicable information security standards and regulatory requirements
+ Highly self-motivated and directed
+ Keen attention to detailORMCMGuardian
**Qualifications**
We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:
+ Competitive base salaries
+ Bonus incentives
+ Support for financial-well-being and retirement
+ Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
+ Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
+ Generous paid parental leave policies (depending on your location)
+ Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
+ Free and confidential counseling support through our Healthy Minds program
+ Career development and training opportunities
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
**Job:** Technology
**Primary Location:** India-Haryana-Gurgaon
**Other Locations:** India-Karnataka-Bengaluru Urban
**Schedule** Full-time
**Tags** 1LOD_IT & IS
**Req ID:**

**Description**
At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.
Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.
**How will you make an impact in this role?**
Responsible for contacting clients with overdue accounts to secure the settlement of the account. Also they do preventive work to avoid future overdues with accounts that have a high exposure.
The Information Security Manager function resides within the Regional Information Security Office and is responsible for control enforcement, cybersecurity awareness, reporting and enablement for American Express in Asia Pacific Region. The incumbent will be responsible for helping design and execute a regionalized information security risk management strategy closely informed by the APAC regulatory landscape and AXP business interests, including third party service providers, affiliates, and legal entities.
Key responsibilities include:
+ Assist with the interconnection between core enterprise information security functions and American Express Asia-pacific legal entities
+ Contribute to the first line information security risk management and reporting
+ Assess the design and operating effectiveness of information security controls upon which the American Express Asia-pacific legal entities rely to protect Confidentiality, Availability, and Integrity of Information and Systems
+ Collaborate with General Counsel, Market Compliance, and the American Express Privacy Office to support market regulatory requirements
+ Lead the information security related aspects of regulatory changes and projects
+ Identify, scope, and investigate new information security risks, including assisting with assessment of key American Express third-party providers in the region
+ Deliver leadership reporting and risk metrics that demonstrate the effectiveness of the cyber security program to American Express Asia-pacific legal entities.
+ Consult on market-specific Business & Technologies projects to ensure appropriate security protection
+ Craft responses to Information Security audit and examination requirements for the market
+ Operate as part of the extended Information Security team in support of all security and compliance initiatives
+ Collaborate with global teams to publish market specific Information Security KPIs/KRIs
+ Participate in represent regional information security office in APAC risk committees
+ Participate in meetings with regulatory bodies in Asia Pacific and present Information security posture of American Express
**Required Skills:**
+ 5-10 years of Information Security experience
+ Experience working with regulators, such as METI, in complex regulated businesses
+ Broad understanding of information security disciplines with emphasis on vulnerability management, data protection, infrastructure security, application security, identity and access, incident management and data analytics
+ Strong in risk management. Ability to link threats to risk tolerance and control effectiveness measurements.
+ Understanding of cyber regulatory landscape in Asia Pacific Region
**Required Work Experience, Education, Certification / Training:**
+ Bachelor's degree in computer science, information systems, network security or other related field. Master's degree preferred
+ Professional certifications (CISSP, CRISC, CISA, PCI, CISM or equivalent)
+ At least 5 years' work experience in information security or technology risk management
+ Technical background with hands-on experience across a variety of technologies
+ Proficiency in information security, risk management and audit (risk/security policies, procedures and controls)
**Required Knowledge, Skills and Abilities:**
+ Exceptional verbal and written communication skills
+ Ability to lead and drive discussions on technical matter with senior business stakeholders along with partners and regulators
+ Fluency in English language
+ Requires knowledge of a minimum of several business and technical functional capabilities in some of the following areas: security architecture; security engineering; threat management; vulnerability management; electronic discovery; computer and data breach incident management; data protection; forensics; 3rd party/vendor management; security monitoring; cryptography; cloud security; security operations and administration; access management; security policies and standards; security awareness; business continuity; disaster recovery; IT risk management and controls; web security; data security; network security; system security, technology operations and compliance
+ Strong knowledge and experience in risk assessment and relevant methodologies including quantitative risk management techniques
+ Knowledge of applicable information security standards and regulatory requirements
+ Highly self-motivated and directed
+ Keen attention to detailORMCMGuardian
**Qualifications**
We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:
+ Competitive base salaries
+ Bonus incentives
+ Support for financial-well-being and retirement
+ Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
+ Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
+ Generous paid parental leave policies (depending on your location)
+ Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
+ Free and confidential counseling support through our Healthy Minds program
+ Career development and training opportunities
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
**Job:** Technology
**Primary Location:** India-Haryana-Gurgaon
**Other Locations:** India-Karnataka-Bengaluru Urban
**Schedule** Full-time
**Tags** 1LOD_IT & IS
**Req ID:**

**Our Purpose**
_Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential._
**Title and Summary**
Senior Technology Risk Analyst-2
Overview
The ONE ("The Operations, Network, and Employee Digital Experience teams focus on the underpinning platforms that power our Network and the employees that serve it") Technology Operations Controls team is a group focused upon establishing both foundational and transformational risk management practice at Mastercard Technology. Responsibilities include, but are not limited to, executing efforts in support of Technology partners with identifying control gaps, designing key control activities, monitoring such activities (via assessment and testing), and driving risk remediation with TeamONE platform teams.
This is an exciting opportunity to be part of solving complex problems and working with great Mastercard technology leaders in operations and platforms. In this role you'll combine your technical, risk, and control expertise with your keen eye for detail to assess, create, implement, and test robust control activities that fortify TeamONE against threats and potential issues. If you're ready to be at the forefront of technological risk management, we invite you to bring your technology controls experience to our innovative and collaborative environment.
Role
- Conduct assessments and testing of IT controls and processes to identify deficiencies, deviations, and compliance gaps.
- Lead and perform IT and operational control walkthroughs to determine existing process controls and adherence to control framework.
- Develop and update control and process documentation in support of complying with relevant standards, regulatory, industry, and customer expectations.
- Based on criticality and urgency, support remediation activities and link such activities back to monitor risk rating
- Partner with front line and second line technology risk management teams to ensure alignment on risk management methodology, practices, terminology, etc.
All About you
- Technical Proficiency:
o Knowledge of IT general controls and related operations.
o Experience in Mainframe, Oracle, SQL, Unix/Linux, HP Nonstop and/or Windows environments.
o Knowledge of cybersecurity principles, best practices, and threat landscape.
o Ability to both assess and test technology controls, vulnerabilities, and potential risks.
o General understanding of technology infrastructure.
- Risk Management Expertise:
o Experience in delivering technology risk assessments, testing and mitigation activities (e.g., understanding different steps in testing and how best to apply them).
o Demonstrated experience in both executing and leading technology risk and control assessment and testing activities as part of a larger team and as an individual contributor.
o General understanding of industry standards and regulatory requirements related to technology risk management (e.g., ISO 27001, NIST Cybersecurity Framework).
- Regulatory and Compliance Knowledge:
o Experience in developing, performing, and evaluating/assessing technology controls and testing/validation.
o Ability to align the organization's technology practices with legal and regulatory standards.
- Execution and Communication:
o Demonstrate strong execution skills, consistently meeting and exceeding team project deadlines, and goals both as an individual contributor and within a team dynamic.
o Demonstrate ability to work in a global team environment, ensuring tasks are completely, thoroughly and accurately executed.
o Strong analytical skills to identify potential risks, assess their potential impact, and devise effective mitigation strategies.
o Excellent communication skills to effectively convey technical concepts to both technical and non-technical stakeholders, including executive management.
o Ability to collaborate with cross-functional teams, including other technology, security, compliance, application / product teams, and business / regional teams.
- Qualifications (preferred but not required)
o Bachelor's degree in Information Technology, Computer Science, or a related field.
o Experience in evaluating (assessing/testing) compliance with legal, regulatory, operational and IT requirements.
o Professional Certification or Designation (e.g., CISA, CIA, CISSP, or equivalent).
o Experience in payment eco systems.
**Corporate Security Responsibility**
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
+ Abide by Mastercard's security policies and practices;
+ Ensure the confidentiality and integrity of the information being accessed;
+ Report any suspected information security violation or breach, and
+ Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

**Our Purpose**
_Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential._
**Title and Summary**
Senior Technology Risk Analyst-1
Overview
The ONE ("The Operations, Network, and Employee Digital Experience teams focus on the underpinning platforms that power our Network and the employees that serve it") Technology Operations Controls team is a group focused upon establishing both foundational and transformational risk management practice at Mastercard Technology. Responsibilities include, but are not limited to, executing efforts in support of Technology partners with identifying control gaps, designing key control activities, monitoring such activities (via assessment and testing), and driving risk remediation with TeamONE platform teams.
This is an exciting opportunity to be part of solving complex problems and working with great Mastercard technology leaders in operations and platforms. In this role you'll combine your technical, risk, and control expertise with your keen eye for detail to assess, create, implement, and test robust control activities that fortify TeamONE against threats and potential issues. If you're ready to be at the forefront of technological risk management, we invite you to bring your technology controls experience to our innovative and collaborative environment.
Role
- Conduct assessments and testing of IT controls and processes to identify deficiencies, deviations, and compliance gaps.
- Lead and perform IT and operational control walkthroughs to determine existing process controls and adherence to control framework.
- Develop and update control and process documentation in support of complying with relevant standards, regulatory, industry, and customer expectations.
- Based on criticality and urgency, support remediation activities and link such activities back to monitor risk rating
- Partner with front line and second line technology risk management teams to ensure alignment on risk management methodology, practices, terminology, etc.
All About you
- Technical Proficiency:
o Knowledge of IT general controls and related operations.
o Experience in Mainframe, Oracle, SQL, Unix/Linux, HP Nonstop and/or Windows environments.
o Knowledge of cybersecurity principles, best practices, and threat landscape.
o Ability to both assess and test technology controls, vulnerabilities, and potential risks.
o General understanding of technology infrastructure.
- Risk Management Expertise:
o Experience in delivering technology risk assessments, testing and mitigation activities (e.g., understanding different steps in testing and how best to apply them).
o Demonstrated experience in both executing and leading technology risk and control assessment and testing activities as part of a larger team and as an individual contributor.
o General understanding of industry standards and regulatory requirements related to technology risk management (e.g., ISO 27001, NIST Cybersecurity Framework).
- Regulatory and Compliance Knowledge:
o Experience in developing, performing, and evaluating/assessing technology controls and testing/validation.
o Ability to align the organization's technology practices with legal and regulatory standards.
- Execution and Communication:
o Demonstrate strong execution skills, consistently meeting and exceeding team project deadlines, and goals both as an individual contributor and within a team dynamic.
o Demonstrate ability to work in a global team environment, ensuring tasks are completely, thoroughly and accurately executed.
o Strong analytical skills to identify potential risks, assess their potential impact, and devise effective mitigation strategies.
o Excellent communication skills to effectively convey technical concepts to both technical and non-technical stakeholders, including executive management.
o Ability to collaborate with cross-functional teams, including other technology, security, compliance, application / product teams, and business / regional teams.
- Qualifications (preferred but not required)
o Bachelor's degree in Information Technology, Computer Science, or a related field.
o Experience in evaluating (assessing/testing) compliance with legal, regulatory, operational and IT requirements.
o Professional Certification or Designation (e.g., CISA, CIA, CISSP, or equivalent).
o Experience in payment eco systems.
**Corporate Security Responsibility**
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
+ Abide by Mastercard's security policies and practices;
+ Ensure the confidentiality and integrity of the information being accessed;
+ Report any suspected information security violation or breach, and
+ Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Qualification and Minimum Entry Requirements

• B.Tech/MCA/MBA /CA/CPA/BSC/BCA/MCA/MSC with 3 – 6 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits.
• Candidate should have intermediate knowledge of financials, operations and technology and its related risks
• Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.)
• Qualified to pursue a job-relevant certification (CIA, CISA, CMA, ISO, CRISC, CISSP)
• Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint
• MS Visio skills to develop process and data flow diagrams
• Strong multi-tasking and project management skills
• Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients.
• Preferred Degrees:

B.Tech / B.Sc / BCA

B.Com (Hons) / CA / CPA

MBA – IT / PG – IT or Risk

Position and Key Responsibilities

• Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools
• Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL
• Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards
• Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services
• Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization
• Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions
• Review and complete status documents for client delivery
• Execute components of IT audits under offshore delivery model in an effective and efficient manner
• Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients
• Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements
• Ensure that documentation is compliant with quality standards of the firm
• Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis
• Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients
• Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables
• Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery
• Ensure professional development through ongoing education

Our client is seeking a highly experienced Senior Legal Counsel with a specialization in Technology and Compliance to join their dynamic, remote-first legal team. This position offers the unique opportunity to work from anywhere in India, contributing to the strategic legal direction of a leading organization. The ideal candidate will possess a robust understanding of corporate law, intellectual property, data privacy regulations, and technology-related legal issues. You will be instrumental in advising on complex legal matters, drafting and negotiating agreements, and ensuring the company's adherence to all relevant laws and industry standards.

Key Responsibilities:

• Provide expert legal advice on a wide range of technology-related matters, including software licensing, SaaS agreements, cloud computing, AI, and emerging technologies.
• Draft, review, and negotiate complex commercial contracts, partnership agreements, vendor agreements, and intellectual property licenses.
• Ensure compliance with data privacy laws and regulations (e.g., GDPR, CCPA, Indian data protection laws) across all business operations.
• Advise on intellectual property strategy, including patent, trademark, and copyright protection and enforcement.
• Conduct legal due diligence for mergers, acquisitions, and strategic partnerships.
• Manage and resolve legal disputes, including litigation and arbitration, if necessary.
• Develop and implement internal policies and procedures to mitigate legal risks and ensure compliance.
• Stay current with evolving legal landscapes, particularly in the technology and data privacy sectors, and advise the business on potential impacts.
• Collaborate closely with internal teams, including engineering, product development, sales, and executive leadership, to provide practical and business-oriented legal solutions.
• Oversee external counsel engagements and manage legal budgets effectively.
• Conduct training sessions for employees on legal compliance and risk management.

Qualifications:

• Juris Doctor (JD) or equivalent law degree from a reputable institution.
• Admitted to practice law in at least one Indian jurisdiction.
• Minimum of 8 years of progressive legal experience, with a significant focus on technology law and corporate compliance.
• In-depth knowledge of data privacy regulations, intellectual property law, contract law, and corporate governance.
• Proven experience in drafting and negotiating complex technology-related agreements.
• Excellent analytical, strategic thinking, and problem-solving skills.
• Exceptional written and verbal communication skills, with the ability to explain complex legal concepts clearly and concisely.
• Demonstrated ability to manage multiple high-priority matters simultaneously in a fast-paced environment.
• Experience working in a global or multinational organization is a plus.
• Ability to work independently and collaboratively in a remote setting.

This remote position is ideal for a seasoned legal professional seeking a challenging and rewarding role with a forward-thinking company.

About Revolut

People deserve more from their money. More visibility, more control, and more freedom. Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, saving, investing, exchanging, travelling, and more — help our 60+ million customers get more from their money every day.

As we continue our lightning-fast growth, 2 things are essential to our success: our people and our culture. In recognition of our outstanding employee experience, we've been certified as a Great Place to Work™. So far, we have 10,000+ people working around the world, from our offices and remotely, to help us achieve our mission. And we're looking for more brilliant people. People who love building great products, redefining success, and turning the complexity of a chaotic world into the simplicity of a beautiful solution.

About the role

Our Technology team builds the systems and experiences that keep Revolut moving. From the infrastructure behind our innovative app to the features used by millions of people around the world, they bring sharp thinking, speed, and a focus on meaningful impact to everything they do.

We’re looking for a Business Risk Manager to develop sustainable growth strategies that align with operational risk frameworks. Someone with solid knowledge of technical risk who’ll take our risk management to the next level.

Up to shape the future of finance? Let’s get in touch.

What you’ll be doing

• Working across the Technology and Product teams to analyse and better understand their risk profile
• Supporting teams in managing and reducing risk by designing, implementing, and testing controls
• Performing risk and control assessments and deep dives within various product and technology teams to come up with actionable insights
• Managing risks proactively to reduce/limit major incidents, breaches, or examples of non-compliance in technology risk
• Recording, handling, and reporting on risk incidents
• Delivering technology risk insights for the Board and executive committees, including data-driven risk reports and developing monitoring metrics (KRIs, BCIs)
• Driving effective implementation and communication of operational risk management policies and guidelines
• Reviewing and updating ICT-related documentation

What you'll need

• 5+ years of experience in a similar role
• Knowledge of IT infrastructure (cloud), operations, software, hardware, data flows, change control, etc., and the impact of these on an organisation’s risk
• Knowledge of products, services, and tooling related to technology product delivery with Agile and Kanban
• The ability to adapt messages based on the audience and expectations while interacting with 1LoD and other stakeholders
• The ability to define risk appetite, risk impact, and identify risk likelihood
• The ability to quickly assume responsibilities
• Previous examples of practically interpreting and organising complex data
• The ability to provide control testing support to 1LoD

Nice to have

• Data and SQL skills
• SOX controls exposure

Our client is a rapidly growing organization that places paramount importance on data protection and cybersecurity. They are seeking an accomplished Head of Information Security & Risk Management to lead their security operations. This is a fully remote position, allowing you to secure our client's digital assets from anywhere. You will be responsible for developing, implementing, and maintaining a comprehensive information security program that protects sensitive data and systems from evolving threats. This includes defining security policies and procedures, conducting risk assessments, and overseeing the implementation of robust security controls. You will lead incident response efforts, manage security awareness training programs, and ensure compliance with relevant industry regulations and standards (e.g., ISO 27001, GDPR). The ideal candidate will have extensive experience in information security, cybersecurity, and risk management, with a proven track record of building and leading security teams. Expertise in areas such as network security, cloud security, data encryption, penetration testing, and threat intelligence is crucial. Strong leadership, strategic thinking, and communication skills are essential, as you will interact with executive leadership, legal teams, and all levels of the organization. You should be adept at translating complex technical security concepts into business-friendly terms and advocating for necessary security investments. This role demands a proactive and forward-thinking individual who can anticipate future security challenges and implement proactive measures to safeguard the organization. If you are a seasoned security professional looking for a critical leadership role with the flexibility of remote work, join our client and fortify their defenses from **Jaipur, Rajasthan, IN**, in a fully remote capacity.