Information Security Engineer

About us:

Piramal Group is a global business conglomerate with diverse interests in Pharma, Financial Services and Real Estate. The Group has offices in over 30 countries and a global brand presence in more than 100 markets.

Led by Mr. Ajay Piramal, the Chairman, Piramal Group is a torchbearer of trusteeship and responsible business ethos. Based on the philosophy of ‘Doing Well and Doing Good’, the Group continues to create long-term value for its stakeholders and the community at large.

Piramal Retail Finance, the consumer lending platform of Piramal Enterprises Limited, engages in various financial services businesses. It is focused on serving all lending needs of consumers and small businesses across Bharat, differentiating through product personalisation & superior customer experience. currently offers multiple products in its target markets including Affordable Housing loans, Mass Affluent Housing loans, Loans Against Property, Secured Small Business Lending, Digital Purchase Finance, Digital Personal Loans, and Used-Car loans across Tier I, II and III cities.

Focused on building strong partnerships, the Company offers an Artificial Intelligence (AI) enabled multi-product retail lending platform by augmenting a ‘Digital at its Core’ strategy via physical customer connect-points for budget customers of Bharat. Its vision is to reach to ‘Bharat’ customer segments, especially those that do not have easy access to the Indian financial systems, across geographies.

Key Responsibilities:

• He/She will be responsible for managing Regulatory Information & Cybersecurity compliance requirements like RBI & IRDAI
• Perform risk assessment of all key applications and IT Infrastructure to ensure all risks are identified and mitigated
• Responsible for handling the relevant application security practice areas like vulnerability management, data leakage protection, Security Operations management etc.
• Periodically provide reports of IT security compliance, Risk, and overall security posture to Chief Information Security Officer
• He / She will be ensuring that potential security incidents are correctly identified, analyzed, investigated, reported and taken care of the ongoing operational components of Enterprise Informationsecurity
• Responsible for evaluating and performing proof of concept of new Cyber Security Products required by Orgnisation
• He/She will be responsible to manage Business Continuity programas per regulatoryframework.

Requirements:

• He/She must have 8- 10 Years of experience in Information Security, IT Risk management with strong academic background
• Candidate must have strong experience in Information Security Management system, Policy & procedures creation, implementation
• ISO27001 assessment– Specification for a framework of policies procedures that include all technical & operational controls
• Candidate must have strong experience of Information Security Risk Management, Cloud Security Assessment, defence in depth and offensive vs defensive techniques
• Hands on Knowledge of Cloudsecurity, CSPM technology Independent IS Audit management
• Candidate must have experience of Cybersecurity Framework implementation, tools& technologies
• Candidate must have knowledge of Cybersecurity tools like Data Leakage Prevention (DLP), SIEM, Identity & Access managementand Encryption
• Must have strong understanding of Network Security technologies like Firewall, IDS/IPS, and SSL VPN etc.
• Candidatemusthave goodcommunicationskills (written & verbal both)
• Ability to stay current with emerging threats, security risks and potentialimpacts to the business
• Should have strong exposure on Frameworks, IDS/ IPS, Firewalls, Standards, Web app security, Vulnerability Scanners, Network Security, Cyber security, Anti malware systems etc.
• Hands-on experience in Information Security & Risk areas driving remediation, analysis and mitigation in Cyber security, IT Infrastructure and applications.
• Candidate should have Information security certification CISSP
• Desirable Certificate : AWS Certified Security- Specialty with hands on exp

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, colour, religion, gender, gender identity or expression, sexual orientation, age, marital status, nationality, disability, or any other legally protected status. All qualified applicants will receive consideration for employment based solely on merit and business needs.