Information Technology

Information Security and Compliance

Bengaluru
Work Type: Full Time
Apply Now

About Zerodha Fund House


At Zerodha fund house, we are enabling the next generation of Indian investors. We feel mutual funds as a product needs to be reimagined to build simple & relevant investment solutions for the next 10 crore individuals to participate in and grow the capital markets in India. Built by the people behind Zerodha & smallcase, Zerodha fund house brings the principles of simplicity, cost-effectiveness, and transparency to the mutual funds. We are building the founding team and are looking for smart and passionate people to join us. 

Where you fit in 

This will be an Individual Contributor role to start and can evolve over time based on how this function matures. You will play a critical role in the company’s tech infrastructure, processes which will be fully aligned with regulatory, security and business continuity standards.

Key Responsibilities

  • Draft, coordinate & monitor IT processes & policies to ensure compliance as per IT Act, regulatory bodies (e.g. RBI, SEBI, GDPR, UIDAI etc.), info security (ISM) guidelines and other applicable laws with respect to Technology, in coordination with internal & external stakeholders

  • Prepare & update business-wise IT infra details required by the Compliance/Legal teams for regulatory filings and 3rd party audits

  • Conduct vendor risk assessment audits & ensure identified gaps are proactively filled

  • Introduce new processes & policies by conducting market studies & surveys relevant to our business

  • Plan, formulate, coordinate, implement & monitor the cyber crisis management plan (CCMP)

  • Incident Management and resolution

  • Interface with external auditors and set up processes to ensure all Infosec audits go smoothly

  • Formulate, implement, review & monitor BCP

Requirements

  • 4-6 years of experience, including being SPOC for Infosec audits

  • In-depth knowledge of technology, security, risk, and compliance best practices

  • Strong capability in interfacing with both technology and business teams

  • Detailed understanding of security monitoring, threat intelligence & vulnerability management

  • A self-driven attitude with a strong sense of ownership

  • Experience with RBI and/or SEBI (preferred) audits is a big plus

  • Assisting the team to conduct Technology Committee

  • Assisting the Risk Officer to conduct independent assessments of the business functions

  • Provide timely data for Risk Management Committee

Submit Your Application

You have successfully applied
  • You have errors in applying
Social Network and Web Links
Provide us with links to see some of your work (Git/ Dribble/ Behance/ Pinterest/ Blog/ Medium)