2+ Information security management system Jobs in Mumbai | Information security management system Job openings in Mumbai
Apply to 2+ Information security management system Jobs in Mumbai on CutShort.io. Explore the latest Information security management system Job opportunities across top companies like Google, Amazon & Adobe.
Job Summary
We are looking for an Information Security & Compliance Officer to own and drive information security governance, risk management, audit readiness, compliance execution, and cybersecurity coordination.
The person will maintain compliance readiness across ISO 27001, PCI DSS, DL-SAR, CICRA, bank/partner audits, RBI requirements, Digital Lending Guidelines, and data protection requirements, while supporting readiness for ISO 27701, SOC 2 Type 2, DPDP, and other future compliance needs.
Responsibilities
· Own and drive information security governance, risk management, compliance, and audit readiness.
· Manage the audit and compliance calendar, including bank audits, regulatory reviews, partner reviews, security questionnaires, and external assessments.
· Maintain audit and compliance readiness for ISO 27001, PCI DSS, DL-SAR, CICRA, RBI Cyber Security Framework, Digital Lending Guidelines, DPDP/data privacy, and other applicable requirements.
· Maintain policies, procedures, risk registers, audit evidence, compliance trackers, security documentation, and closure reports.
· Conduct and coordinate internal reviews for access control, privileged access, policy compliance, vendor security, cloud security, and security configurations.
· Coordinate VAPT, source code reviews, cloud security reviews, configuration reviews, SAST/DAST activities, and remediation tracking.
· Work with Technology, DevOps, IT, Compliance, HR/Admin, vendors, and business teams to close vulnerabilities, audit findings, security gaps, incidents, and risks.
· Own and drive security incident response execution, including escalation coordination, RCA tracking, corrective actions, evidence documentation, closure reports, and periodic drills.
Required Skills
· Good understanding of information security, GRC, IT risk, audits, compliance, and cybersecurity controls.
· Working knowledge of application security, API security, cloud security, IAM, vulnerability management, incident response, secure SDLC, and vendor security.
· Understanding of ISO 27001, PCI DSS, RBI Cyber Security Framework, Digital Lending Guidelines, banking/fintech requirements, and data protection requirements.
· Ability to assess technical security risks, define controls, and coordinate remediation with technical teams.
· Strong audit handling, evidence management, documentation, communication, follow-up, and ownership.
· Ability to work independently with auditors, banks, vendors, technical teams, and business stakeholders.
Required Qualification
· 3–8 years of experience in information security, GRC, IT risk, cybersecurity coordination, audit, or compliance.
· Experience handling bank audits, regulatory audits, ISO 27001, PCI DSS, VAPT coordination, access reviews, risk registers, audit evidence, and remediation tracking is preferred.
· Experience in fintech, banking, NBFC, payments, lending, or regulated technology environments is preferred.
· Bachelor’s degree in Computer Science, IT, Information Security, or a related field.
Relevant certification preferred, such as ISO 27001 LA/LI, CISA, CISM, PCI DSS, ISO 27701, Security+, CEH, or equivalent.
IT Operations Engineer - Arcitech AI
Full-time
Navi Mumbai, Maharashtra, India
2-5 Years Experience
IT Operations Engineer - Arcitech AI
Full-time
Navi Mumbai, Maharashtra, India
Position: IT Operations Engineer
Location: Vashi
Employment Type: Full-time
About the Role :
We are seeking an experienced and versatile IT & Desktop Engineer with 3–5 years of hands-on experience
in IT infrastructure support, server management, desktop troubleshooting, and cloud technologies
(AWS/Azure). This role includes system administration, network support, desktop management, and security
operations. The ideal candidate should be capable of handling end-user support as well as backend IT
operations, ensuring smooth functioning of servers, networks, and endpoint devices.
Key Responsibilities
• Manage and maintain servers including installation, configuration, patching, and performance
monitoring.
• Perform routine server administration tasks such as backups, security updates, IAM and logs.
• Manage Active Directory, Group Policies, and access permissions.
• Troubleshoot system and application issues across Windows/Linux.
• Ensure uptime, availability, and reliability of IT infrastructure.
• Support IT security operations including antivirus, firewalls, and vulnerability fixes.
• Maintain IT documentation, SOPs, and configuration records.
• Provide L1/L2 end-user support for desktops, laptops, printers, and other endpoint devices.
• Install, upgrade, and troubleshoot Windows/Mac/Linux OS on client systems.
• Diagnose and resolve hardware, software, and peripheral issues.
• Configure and manage endpoint security tools and policies.
• Manage CCTV configuration, monitoring, and backup processes.
• Perform LAN/WAN troubleshooting including switches, routers, Wi-Fi, and cabling.
• Handle network troubleshooting (DNS, DHCP, IP conflicts, connectivity issues).
• Set up new user profiles, email accounts, and access privileges.
• Support remote users using VPN and remote access tools.
• Oversee identity and access lifecycle (SSO, MFA setups).
• Configure network devices and enforce basic network security standards.
• Monitor security alerts & escalate incidents when necessary.
• Assist in implementing security policies, compliance controls & patching plans.
• Support cloud resources setup, IAM access, and monitoring.
• Monitor systems through tools like Grafana, CloudWatch, Zabbix, or similar.
• Manage license renewals & vendor coordination.
• Support biometric devices & access control systems.
• Assist HR/Operations during onboarding/offboarding processes.
• Collaborate with cross-functional teams to improve IT workflows.
• Participate in IT audits and compliance reviews.
• Conduct periodic infrastructure health checks.
• Identify automation opportunities in IT operations.
• Support procurement decisions for IT equipment & services.
• Perform root-cause analysis for major incidents.
Technical Skills Required
• Windows & Linux server management
• LAN/WAN troubleshooting & network diagnostics
• CCTV configuration and backup management
• Endpoint device configuration & management
• Asset management
• Networking knowledge: DNS, DHCP, TCP/IP, Routing, Switching
• Backup tools & disaster recovery
• IT ticketing systems & ITIL processes
• Security tools: antivirus, EDR, endpoint protection
• Basic cloud concepts (AWS/Azure)
Industry
- IT Services and IT Consulting
Employment Type
Full-time

