Associate Director – Cybersecurity

Business Unit:Global Technology

Reporting To:Director, Cybersecurity

Shift:EMEA (1:30 pm - 10:30 pm IST) (India)

About Russell Investments, Mumbai: 

Russell Investments is a leading outsourced financial partner and global investment solutions firm providing a wide range of investment capabilities to institutional investors, financial intermediaries, and individual investors around the world. Building on an 88-year legacy of continuous innovation to deliver exceptional value to clients, Russell Investments works every day to improve the financial security of its clients. The firm has over $1 trillion in assets under advisement (as of December 31, 2023) and $302.7 billion in assets under management (as of March 31, 2024). Headquartered in Seattle, Washington in the United States, Russell Investments has offices around the world, including London, New York, Toronto, Sydney, Tokyo, Shanghai, and Mumbai.

Joining the Mumbai office is an incredible opportunity to work closely with global stakeholders to support the technology and infrastructure that drives the investment and trading processes of a globally recognized asset management firm. Be part of the team based out of Goregaon (East) and contribute to the foundation and culture of the firm’s growing operations in India. The Mumbai office operates with varying shifts to accommodate time zones around the world.

For more information, please visit https://www.russellinvestments.com.

Job Description:

Location: Mumbai, India
Department: Global Technology/Cybersecurity
Reporting to: Global Head of Cybersecurity

Role Overview

The Head of Cybersecurity – India will lead the cybersecurity strategy, operations, and governance for the region. The role is responsible for ensuring robust protection of the organization's data, systems, and networks against cyber threats, while enabling compliance with regulatory requirements. This senior leadership role requires expertise in threat management, risk assessment, and cybersecurity technologies, as well as strong people and project management skills.

Key Responsibilities

Strategic Leadership

• Develop and implement the cybersecurity strategy for India in alignment with global and regional security objectives.

• Ensure alignment of cybersecurity initiatives with business goals and regulatory requirements.

• Lead a high-performing cybersecurity team.

• Assist Global Head of Cybersecurity in preparing presentations to the various Boards and Committees.

Operational Security

• Oversee the design, implementation, and maintenance of security technologies, including firewalls, intrusion detection systems, endpoint protection, and cloud security tools.

• Monitor, detect, and respond to cyber threats, ensuring rapid resolution of incidents.

• Identify risks in technology selections and configurations in the region and create plans for remediation.

• Ensure business continuity through robust disaster recovery and incident response plans and revise such plans to leverage this regional office.

Risk & Compliance

• Assess, monitor, and mitigate cybersecurity risks in collaboration with business units.

• Ensure compliance with local and international regulations (e.g., GDPR, IT Act 2000, ISO 27001).

• Report regularly to Global Head of Cybersecurity on the state of cybersecurity and risks.

• Ensure compliance with all global corporate Policies, Standards and best practices for the India office.

Stakeholder Engagement

• Collaborate with global cybersecurity leaders to share insights, resources, and strategies.

• Act as the primary point of contact for regulators, auditors, and third-party security assessments in India.

• Facilitate cybersecurity awareness program for employees in India to foster a security-conscious culture and ensure completion of required training.

Innovation and Trends

• Stay updated on emerging cybersecurity threats, technologies, and best practices.

• Recommend and implement innovative solutions to strengthen the organization’s cybersecurity posture.

• Manage Cybersecurity intranet site and ensure fresh and relevant content is provided.

Qualifications

Education

• Bachelor’s/Master’s degree in Computer Science, Information Security, or a related field.

Certifications (Preferred)

• CISSP (Certified Information Systems Security Professional)

• CISM (Certified Information Security Manager)

• CRISC (Certified in Risk and Information Systems Control)

Experience

• 12+ years of experience in information security, with at least 5 years in a leadership role.

• Proven track record of managing cybersecurity strategies in a large organization, preferably in a global or regional context.

• Hands-on experience with security frameworks like NIST, ISO 27001, or COBIT.

Skills

• Strong knowledge of security technologies, tools, and practices (e.g., SIEM, EDR, DLP, cloud security).

• Experience managing cybersecurity in multi-cloud and hybrid environments.

• Excellent leadership, communication, and decision-making skills.

• Ability to balance technical requirements with business needs.