Lead Information Security Engineer - Governance, Risk & Compliance

Flipkart

Bengaluru/Bangalore

Not disclosed

Work from Office

Full Time

Min. 5 years

Job Details

Job Description

Lead Security Engineer - GRC

Description

About the team: 

The Governance, Risk & Compliance team is a central part of the Information security department, with
primary responsibility to provide robust metrics, data-driven insights, and effective technologies for
information security risk management. We aim to provide a structured approach to align information
security with business objectives, while effectively managing risk and meeting compliance requirements.
And responsible for ensuring Flipkart is adhering to mandated statutory and industry infosec
requirements.


About the role:

Flipkart is seeking a skilled, motivated, and collaborative Lead Information Security Engineer -
Governance Risk & Compliance (GRC).
In this role, you will be a key member in the Information Security team to move forward the Governance,
Risk and Compliance practice by influencing business leaders across the Flipkart enterprise.
You will serve as an expert and be a mentor to the information security core team. You will be a strong
communicator and influencer, “customer” focused, demonstrate curiosity to learn and understand the
business.

What you’ll do:

● Develop, implement, maintain and oversee enforcement of policies, procedures, standard and
associated plans based on industry-standard best practices (ISO 27001, NIST, PCI-DSS, etc).
● Establish, operate, and further develop compliance and risk management processes for Flipkart
services in alignment with Group Security frameworks and business processes.
● Organize, conduct and perform technology and information security risk assessments, M&A
security governance to identify and evaluate risks in technology delivery areas and staff functions.
● Act as a security advocate, supporting business owners’ requests related to security (evaluate
policy exception requests, complete third-party security assessment).
● Perform technology security review on application, infrastructure & cloud security.
● Identifying, documenting and maintaining information security risk register & reporting to the
security lead and other stakeholders.
● Design requirements for security compliance automation tasks & Influence Security Control
Automation efforts, security and compliance at scale.
● Represents Security posture of Flipkart in internal & external audits.
● Drive security awareness & conducts regular training on Flipkart’s security policy and standard
requirements through training, communication, and workshops.
● Develops metrics that demonstrate the current risk state, indicators of progress, and business
alignment
● Establishes and regular reporting mechanisms for measuring compliance and performance of
Management projects

Skills Required

Information Security, grc, Nist, ISO 27001

Education/Qualification

CISA CISSP

Job role

Work location

Bangalore

Department

IT & Information Security

Role / Category

IT Security

Employment type

Full Time

Shift

Day Shift

Job requirements

Experience

Min. 5 years

About company

Name

Flipkart

Job posted by Flipkart

This job has expired