Cyber Security and Data Privacy Auditor
Fynd (Shopsense Retail Technologies Ltd.)
Location
Mumbai | India
Job description
Fynd is India's largest omnichannel platform and multi-platform tech company with expertise in retail tech and products in AI, ML, big data ops, gaming+crypto, image editing and learning space. Founded in 2012 by 3 IIT Bombay alumni: Farooq Adam, Harsh Shah and Sreeraman MG. We are headquartered in Mumbai and have 1000+ brands under management, more than 10k stores and servicing 23k + pin codes.
We're looking for a Security Audit Compliance/Cyber Security Auditor to join our Regrowth Engineering Team. The team builds products for 10M+ Fynd users and internal teams. Our team consists of generalist engineers who work on building modern websites (SPA amp; Isomorphic), mobile apps for Android amp; iOS, REST APIs and servers, internal tools, and infrastructure for all our users.
What will you do at Fynd
- Updates job knowledge by participating in educational opportunities like reading professional publications, maintaining personal networks, and participating in professional organizations.
- Meets work standards by following production, productivity, quality, and customer-service standards; resolving operational problems; and identifying work process improvements.
- Ensures compliance with regulations and controls by examining and analyzing records, reports, operating practices, and documentation; and recommending opportunities to strengthen the internal control structure.
- Provides business-specific interpretations and supports automation opportunities while working with DevOps teams.
- Establishes credibility and maintains good working relationships with groups involved with payment security and compliance matters (InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.).
- Collaborate with Compliance Specialists and business/service teams to understand and validate assessment scope.
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity.
- Responsible for building and influencing security as a core competency throughout our relationships with internal teams/partners/vendors; this includes providing education and training to the organization.
- Delivers recommendations and risk interpretations in a clear, concise and audience-specific format
- Engages with the Business and SMEs to ensure compliance to information security policies
- Supports ad-hoc data analysis requests
- Analysis of historical data to identify trends and insights
- Leads the creation, implementation, monitoring, and maintenance of security Policies and Standards
Some Specific Requirements - Professional auditing qualification like ISO Lead Auditor with 3+ years in third party contractor underwriting or supplier vetting.
- Strong communication and multitasking skills
- A keen eye for detail
- 4+ years of relevant industry experience including information assurance, data privacy and compliance in healthcare domains.
- 3+ years of information security governance, audit, risk management or related client service or consulting experience.
- Skilled in risk management, business risk analysis and making complex business/risk trade-off recommendations and decisions.
- Technical knowledge and familiarity with information security standards.
- Related security control and compliance experience in various frameworks including: HIPAA, HITRUST, PCI DSS, GLBA, ISO, NIST, etc.
- CISSP, CISA, CISM, CIPP, CEH and/or other comparable security controls or audit certifications preferred.
- Experience with service-oriented architectures and web services security.
What do we offer
Growth - Growth knows no bounds, as we foster an environment that encourages creativity, embraces challenges, and cultivates a culture of continuous expansion. We are looking at new product lines, international markets and brilliant people to grow even further. We teach, groom and nurture our people to become leaders. You get to grow with a company that is growing exponentially.
- Flex University: We help you upskill by organising in-house courses on important subjects
- Learning Wallet: You can also do an external course to upskill and grow, we reimburse it for you.
Culture - Community and Team building activities
- Host weekly, quarterly and annual events/parties.
Wellness - Mediclaim policy for you + parents + spouse + kids
- Experienced therapist for better mental health, improve productivity amp; work-life balance
We work 5 days from the office and we make sure people have everything they need:-- Free meals
- Snacks, goodies amp; a lot of fun culture
Job tags
Salary