Associate Vice President - Information Security and Compliance

If you are a current employee who is interested in applying to this position, please navigate to the internal Careers site to apply.

Role: Associate Vice President - Global Security & Privacy

Experience: 15+ years

Location: Hyderabad

Shift Timings - Needs to be flexible
 

Position Summary:

At MarketStar, you can work in a dynamic environment that thrives on collaboration, embraces cutting-edge technologies, and delivers impactful solutions to our clients. With a shared commitment to excellence, innovation, and client success, we are setting new benchmarks in the market. Since 1988, we’ve been accelerating our clients' revenue by deploying tailored sales and customer success teams. We manage over 80,000 accounts, interact with 8,000+ customers daily, and influence more than $6 billion in sales, supporting businesses from startups to Fortune 100 companies.

By leveraging MarketStar's proven track record in driving sales and customer engagement, we have forged a unique synergy that propels us to the forefront of our field. Together, we will shape the future of our industry and achieve new heights of success.

With our eyes set on the future, we are looking for an energetic, outstanding leader, Associate Vice President – Global Security and Privacy with experience in information security, ISO audits, SSAE 18 SOC Audits, Business Continuity Management System, Privacy Information Management System to handle our information security Operations team across the globe. The candidate will ensure the setup, maintenance, upkeep, monitoring, and improvement of the

Organization's Information Security Management System, Business Continuity Management System, Privacy Information Management System

Key Responsibilities & What will you need to succeed in this role?

• Direct Management of AUDITS & Security Certification Compliance Team
• Accountable for the timely and successful completion of all the security certifications as per the organization's requirements
• Supervise and direct the overall strategic direction of the Audit and Compliance Team, including resource planning, performance management, and continuous improvement.
• Direct implementation of ISO 27001:2022 controls and evidence generation, collection and other activities in support of ISO 27001:2022 compliance requirements.
• Direct implementation of SOC 2 Type 2 controls and evidence generation, collection and other activities in support of SOC 2 Type 2 compliance requirements
• Design and execution of organization-wide ISMS Learning and Development Programs, fostering a culture of security awareness and compliance.
• Direct Management of Client Contractual Compliance (CCC) & Vendor Risk Management (VRM) Team
• Accountable for contractual compliance for all the MarketStar clients
• Accountable for ensuring vendor compliance as per MarketStar’s security, privacy, and risk management standards.
• Collaboration with IT Infrastructure - Security Operations Team
• Ensure the successful operation of security solutions such as vulnerability scanning tools, DLP systems, CASB, SIEM, and email security solutions.
• Define standards for endpoint security solutions.
• Identity Access Management Systems
• Periodic review of cybersecurity monitoring activities
• Ensuring a strong proactive security posture
• MarketStar Security Posture
• Responsible for ensuring that MarketStar has a strong security posture in alignment with global standards and exceeds the client's trust and information security assurance requirements
• Maintain and exceed high standards of confidence levels to the clientele existing and prospective by maintaining state-of-the-art security compliance programs and bringing outstanding recognition to the company through globally recognized certifications
• Business Continuity Management
• Supervise the BCMS implementation of the organization, which includes the BIA, BCMS Strategy, and BCPDR Documentation
• Supervise, guide the Business Continuity Manager, BCPDR Team, Incident Management Team, and the Emergency Response Team
• Legal and Privacy Compliance
• Demonstrate the ability to strike the right to maintain balance between business needs and security and privacy requirements. Should be able to use creative problem solving to enable the business in their work, while still providing required security and privacy protections
• - Avoids legal challenges by understanding current and proposed legislation; enforcing regulations; recommending new procedures; complying with legal requirements; and consulting with legal counsel as appropriate for direction and clarity
• Work with and Support the Vice President - Global Security and Privacy
• To design MarketStar’s ISMS Security Policies and Procedures
• Interact with current and prospective clients on security and privacy issues
• Creation, updating, and maintenance of security procedures and documentation when required
• Design of Control Framework as per the ISO, SOC2 standards
• Evaluation of the Controls, along with the recommendations and implementation of enhancements
• Risk Assessment and Risk Management Initiatives
• Recommendations of appropriate compensating controls to the senior management
• Periodic Reporting to the Senior Management
• Conduct quarterly Management review meetings with the MarketStar Information Security Compliance Governance Committee
• Participate along with the Vice President of Global Security and Privacy and provide necessary inputs in the
• Quarterly Security Council Meetings
• Semi-Annual Leadership meetings

Qualifications:

• Bachelor’s degree, preferably in Information Security, Computer Science, or a related field.
• 10+ years of work experience in information security compliance and auditing.
• Knowledge of ISO 27001, ISO 22301, SSAE 18 SOC 2 Type II and related frameworks.
• Experience in audit management (Both External and Internal Audits).
• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology or equivalent combination of education and experience or CISSP or CISM certification or CIPM and demonstrated expertise
• 5+ years of full-time experience in Cyber Security and Privacy implementation, maintenance and support
• Experience in data breach management including personnel direction, internal and external communication, and resolution methods
• Knowledge of hardware systems, system software, networks and application software development lifecycle methodologies.
• Through an understanding of ISO 27001:2022 and SOC 2 standards
• Understanding of GDPR, CCPA, and other privacy laws
• At least one of the Certifications required:
• CISSP(Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CIPM (Certified Information Privacy Manager)
• ISO 27001 Lead Auditor
• Ability to research and ascertain best-practice concepts relative to all aspects of cybersecurity, physical security, and privacy
• Strong problem analysis and resolution skills.
• Ability to communicate with clients and all levels of management in both oral and written form.
• Inquiring mindset with the ability to think analytically and provide effective feedback, where appropriate.
• Experience with methods in securing remote IT resources and physical facility environments
• Comfortable working in a fast-paced, client-driven environment
• Ability to consistently meet deadlines while simultaneously working on multiple projects
• Establishing of and management of budgetary and resource requirements required to execute the security and privacy strategies

What’s in it for you?

• Constant Learning and an entrepreneurial growth mindset
• Employee-centric benefits plan including but not limited to Comprehensive Health Insurance, generous Leave Policy, Covid Support, Vaccination drives, Wellbeing sessions, real-time grievance redressal, and work flexibility
• We are a people-first organization with policies and processes that help you bring the best version of yourself into work, including fast-track growth for high-potential folks
• An opportunity to be associated with the world’s leading brands as clients
• To be a part of an organization with more than 60% of homegrown Leaders
• Customized training programs that are catered to personal and professional development
• We are an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success.

If you’re up for this job, go on and hit the “Apply Now” button!