Information Security Lead - CISA/CISSP Certified

Title : Information Security Lead

Location : Gurugram/Work from Home

Shift : Night Shift

Mandatory skills : 8+ yrs in Information Security, including audits& compliance, Certification (any- CISSP, CISA, ISO27001, SOC)

Position Summary :

The Information Security Lead is responsible for designing, implementing, and managing a comprehensive information security program to protect organizational systems, infrastructure, and sensitive data from cyber threats and breaches. This role requires a strong blend of technical expertise, strategic planning, and leadership to ensure regulatory compliance (e.g., HIPAA, HITRUST CSF, PCI-DSS), mitigate risks, and maintain a secure operating environment.

The role also includes leading external audit and certification processes, managing security operations, and aligning security strategies with business objectives.

Minimum Qualifications :

- Experience : Minimum of 8 years in Information Security, including audit and compliance

- Certifications : CISSP, CISA, ISO 27001, SOC 2

Key Responsibilities :

- Develop and maintain enterprise-wide information security policies and programs

- Ensure compliance with industry standards and regulatory frameworks, including HIPAA, HITRUST, PCI-DSS, ISO 27001, GLBA,

- Hands-on experience conducting risk management by identifying gaps and providing strategies for mitigation.

- Establish appropriate security controls based on defined data classifications to align with applicable laws/regulations/standards (e.g. GLBA, SOX).