Information Security GRC Specialist
Information Security Governance & Operations
Description:
Overview
Information Security Specialist ensures cyber security compliance with core framework/regulations PCI DSS, BSP, Internal information security policy and guidelines and assists in improving the security posture of financial infrastructure and digital banking setup. Also responsible on working with different business units- towards automation of security compliance activities, cardholder data security and threat modeling.
What you will do:
- Ensure security and compliance requirements and its implementation within financial infrastructure & banking environment.
- Monitor relevant regulatory security standards for wallet and digital bank and work towards its compliance and enforcement.
- Periodic maintenance of payment security compliance within banking environment.
- Perform security reviews and gap assessment for digital banking products and embed standard security requirements.
- Act as the principal interface with external auditors and regulators when production systems are within audit scope.
- Perform security compliance automation activities to ease regulatory mandate and work with multiple stakeholders to cascade the same.
- Perform product security reviews to ensure product specific vulnerabilities are uncovered and work with stakeholders to remediate the same.
- Work with OCISO stakeholders to perform threat modeling for products and provide early recommendation to improve flaws.
What we are looking for:
- 3-4 years’ experience in the field of information security/payment security.
- Digital Banking experience will also be preferred.