Information Security Risk Manager

Tide is seeking an Information Security Risk Manager to join their team in Delhi NCR, India. Tide is a business management platform designed for small businesses, offering business accounts and administrative solutions. The company has over 1 million users worldwide and offices in multiple countries.

The Information Security Risk Manager will be responsible for managing information security risk, the Information Security Management System (ISMS), and ensuring compliance with industry standards and regulatory requirements. The role involves working with stakeholders across the business to deliver risk mitigation initiatives and reinforce a strong security culture.

Role Involves:

• Managing information security risk in accordance with Tide’s global Risk Management Framework.
• Managing Tide’s Information Security Management System (ISMS).
• Working with 1LOD stakeholders across the business in order to deliver risk mitigation initiatives
• Ensuring alignment with industry recognised information security control frameworks and standards, such as ISO 27001, PCI DSS, NIST CSF.
• Conducting information security risk assessments and control oversight.
• Defining and measuring key risk indicators and ISMS performance metrics.
• Creating data driven GRC reporting and delivering to senior management.
• Facilitating external audit requirements, and working with stakeholders across 1LOD and 3LOD to close information security audit findings.
• Reinforcing a strong security culture throughout the business.
• Ensuring Tide’s compliance with applicable regulatory requirements, and keeping abreast of new regulatory and compliance developments.

Requirements:

• At least 7 years experience in an information security GRC role.
• Experience managing and leading cross-functional projects.
• Excellent communication and stakeholder management skills.
• Experience in a financially regulated environment.
• Good technical knowledge in the field of information security.
• Experience oversighting information security controls in a modern corporate environment.
• Experience implementing and/or managing an ISMS in accordance with ISO 27001:2022.
• Familiarity with common security and GRC tooling.

What Tide Offers:

• Self & Family Health Insurance
• Term & Life Insurance
• OPD Benefits
• Mental wellbeing through Plumm
• Learning & Development Budget
• WFH Setup allowance
• 15 days of Privilege leaves
• 12 days of Casual leaves
• 12 days of Sick leaves
• 3 paid days off for volunteering or L&D activities
• Stock Options