Information Security Manager

This vacancy is with InterGlobe Business Solutions Private Limited.Job Title: Manager – Information SecurityLocation: GurugramDepartment: Information SecurityRole Overview:The Manager – Information Security will be responsible for implementing and managing security policies, procedures, and controls across InterGlobe's global portfolio. This role ensures compliance with global standards and regulations, manages security operations, and collaborates with internal teams and external partners to maintain a robust security posture.Key Responsibilities:- Implement and oversee information security policies, procedures, and controls. - Ensure compliance with ISO 27001, PCI DSS, and GDPR requirements. - Manage incident response, vulnerability management and security monitoring activities. - Coordinate with managed security partner & vendors for monitoring, reporting, and remediation of identified risks. - Collaborate with IT, Risk, and Compliance teams for security audits and risk assessments. - Review and monitor third-party service providers to ensure adherence to security standards. - Conduct security awareness training and manage periodic compliance reporting. - Align with SOC and offensive security teams to drive technology interventions and maintain cohesive security operationsCore competencies & Technical expertise :- Proven ability to design and implement comprehensive cybersecurity strategies and policies to strengthen critical infrastructure - In-depth understanding of security frameworks and standards such as NIST, ISO 27001, MITRE, PCI-DSS and CIS Controls. - Advanced expertise in data protection technologies, including DLP, data flow analysis, to secure sensitive information. - Strong understanding of cyber and information security risk management principlesQualifications & Experience:- Minimum 8 years of experience in Information Security, with at least 3 years in a managerial role. - Strong knowledge of ISO 27001, PCI DSS, GDPR, and security best practices. - Hands-on experience in Microsoft Azure cloud security, O365 Security, Email Security (CISCO , Barracuda), Data Loss Prevention , Web Proxy, EDR, incident response, risk assessments, and security operations is desirable. - Experience working with managed security service providers.Preferred Certifications:- CISSP (Certified Information Systems Security Professional) - CISM (Certified Information Security Manager) - CISA (Certified Information Security Auditor) - Comptia Security+

Apply Now