Program Manager - IT Audits and Governance
Gurgaon, HR, IN
IndiGo is India’s largest and most preferred passenger airline and amongst the fastest growing airlines in the world.
We have a simple philosophy: offer fares that are affordable, flights that are on time, and provide a courteous and hassle-free travel experience across our unparalleled network. We show that low cost does not mean low quality. With our fleet of over 320 aircraft, we operate well over 2000+ daily flights, connecting over 118 destinations (of which 32 international), welcoming 100 million customers on board last year. We have an industry leading on-time performance and one of the highest customer NPS in the Indian market. At IndiGo, we will continue to extend our scope, by spreading our wings internationally, developing from a domestic carrier to a global aviation giant.
Job Description
Job Summary
This role encompasses safeguarding the integrity and confidentiality of PSS’s systems through risk management, auditing, and the establishment of strong cyber and network security policies and procedures.
Roles & Responsibility
- This role will be responsible for managing the information security program for PSS Systems and Services.
- This includes the development, implementation, and monitoring of the Information security management system (ISMS), risk control matrix, cyber and network security policies, and procedures.
- The role must manage and perform risk assessments and audits of PSS systems and services, manage, and respond to security incidents.
- Responsible for ensuring full compliance with established policies and procedures, perform checks and regular reviews of various controls to ensure full compliance with Risk Control Matrix and all audit compliance requirements.
- Ensure compliance of PSS systems and services with regulatory requirements and industry standards for information security.
- Interface with various function heads, leaders to coordinate audit exercises and obtain/provide necessary evidence of compliance to requirements.
Required Skill
- Overall, six plus years of experience with at least 5 years as Information Security Manager.
- Strong knowledge of information security and ISMS, IT risk management and compliance requirements for various certifications like ISO 27001, PCI-DSS, GDPR, IT-GRC, TRM etc.
- Experience in cybersecurity, Network & Infrastructure Security, Vulnerability Analysis and Penetration Testing.
- Experience managing security policies, procedures, and technologies.
- Experience conducting risk assessments and audits.
- Manage, test, review, and record evidence of performing various controls as documented in the RCM or as required by various audits.
- Effective communication, analytical and problem-solving skills.
- Familiarity with regulatory requirements and industry standards for information security like NIST, ISO 27001, etc.
- Experience in developing and managing information security awareness program.
Educational Qualifications and certifications
- Bachelor/master’s degree in information security or computer science or equivalent experience.
- CISSP and CISM certification will be a definite advantage.
At IndiGo, we believe in the innate strength of an energetic, diverse, and inclusive workforce, where the viewpoints and life experiences of our employees help us foster strong connection with all our customers. Our diversity equity and inclusion efforts are designed to attract, nurture, and advance the lives of our employees and customers irrespective of their, but not limited to, gender, race, color, religion, caste, creed, ethnicity, origin, language, social and economic status, sexual orientation, persons with disabilities, nationality, age, marital and maternity status.
IndiGo does not charge fees for Job Interviews, Registration, Verification or Offer Letters. All Official communication will be from verified IndiGo IDs (e.g., xxx@goindigo.in). Please report any fake job offer to eco.goindigo.in
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISM CISSP Compliance Computer Science GDPR Governance IDS ISMS ISO 27001 Monitoring Network security NIST Pentesting Risk assessment Risk management
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.