Job Opening : Chief Information Security Officer (CISO)

Location : Thane

Employment Type : Full-Time | Senior Leadership

Department : Security & Compliance

About the Role :

Were looking for an experienced and visionary Chief Information Security Officer (CISO) to lead our company-wide information security strategy.

As a key member of the senior leadership team, youll be responsible for protecting our systems, data, and applications while aligning security initiatives with our business goals.

This role requires a strong leader with deep technical expertise, a strategic mindset, and a passion for building secure, scalable, and compliant environmentsespecially within fast-paced, SaaS or technology-driven companies.

Key Responsibilities

Strategic Leadership

- Define and drive the overall information security vision, strategy, and roadmap.

- Provide executive-level guidance on risk management, compliance, and emerging threats.

- Embed security best practices into business operations through cross-functional collaboration.

Risk & Security Program Management

- Develop and enforce comprehensive security policies, standards, and procedures.

- Lead enterprise-wide risk assessments, threat modeling, and vulnerability analysis.

- Monitor and respond to security threats, alerts, and reports in real time.

Incident Response & Recovery

- Lead the development and execution of incident response strategies and playbooks.

- Oversee security investigations and coordinate cross-functional remediation efforts.

- Act as point-of-contact for stakeholders and regulators during security events.

Compliance & Audit

- Ensure compliance with frameworks and regulations like ISO 27001, GDPR, SOC 2, etc.

- Support internal and external audits, and drive closure of any findings.

- Maintain comprehensive documentation of security policies and incident history.

Security Awareness & Culture

- Promote a culture of security through ongoing training and awareness programs.

- Collaborate with department leaders to ensure security is part of everyday practices.

Technical Leadership

- Oversee the implementation and management of tools like SIEM, IDS/IPS, firewalls, and encryption.

- Conduct regular penetration testing and vulnerability assessments.

- Stay ahead of industry trends and technologies to continually improve defenses.

Application Security Oversight

- Partner with engineering teams to integrate security into the SDLC.

- Lead secure code reviews, vulnerability assessments, and application threat modeling.

- Define and enforce secure coding standards; train teams on AppSec best practices.

What Were Looking For

Education & Certifications

- Bachelors degree in Computer Science, Information Technology, Cybersecurity, or related field.

- Advanced certifications preferred : CISSP, CISM, OSCP, CEH, or equivalent.

Experience

- 12+ years in information security, with leadership in enterprise environments.

- Strong background in SaaS or technology-led companies.

- Proven ability to align security programs with business strategy.

Skills & Competencies

- Deep knowledge of security frameworks (NIST, ISO 27001) and compliance standards (GDPR, SOC 2).

- Expertise in cloud security (AWS, GCP, or Azure).

- Strong communication and leadership skills to influence at all levels.

- Hands-on experience with security tools (SAST, DAST, SIEM, IDS/IPS, encryption).

- Analytical and data-driven approach to problem-solving.

Why Join Us?

- Influence and own the end-to-end security strategy at the highest level.

- Work with a collaborative, mission-driven leadership team.

- Drive innovation in a high-impact role where security is a top priority.