Info security - TPM-Paytm Money

We are seeking a highly organized and technically savvy Information Security Technical Program Manager (TPM) to drive cross-functional security programs, ensuring alignment between engineering, compliance, product, and business teams. The Infosec TPM will play a key role in the planning, execution, and delivery of critical security initiatives, with a focus on cloud security, secure SDLC practices, risk management, audit readiness, compliance, security awareness and policy/process governance.

This role requires strong project/program management skills, a deep understanding of security best practices, and the ability to communicate effectively with both technical and non-technical stakeholders.

1. Lead and coordinate the delivery of cross-functional security programs, including cloud security initiatives, vulnerability management, incident response planning, and compliance efforts.

2. Partner with engineering, DevOps, IT, compliance, and legal teams to define project scope, objectives, and success metrics.

3. Drive the execution of multiple, concurrent security initiatives - ensuring deadlines, quality, and stakeholder alignment.

4. Facilitate cross-functional meetings and ensure alignment on security priorities.

5. Develop project plans, timelines, and deliverables for awareness campaigns, policy rollouts, compliance efforts and reporting for visibility into program health and status.

6. Track progress, manage dependencies, and ensure timely delivery of milestones.

7. Assist in the development and rollout of security frameworks, policies, and standards (e.g., ISO 27001, NIST, CIS & DPDPA).

8. Facilitate risk assessments and threat modeling sessions to identify gaps and mitigation strategies.

9. Manage third-party security audits and work with stakeholders to remediate findings.

10. Build detailed project plans, RAID logs, and status reports, and prepare and present progress decks to leadership and stakeholders.

11. Prepare executive decks, dashboards, and periodic reports on program status, risks, and track security metrics and KPIs.

12. Document meeting minutes, action items, and follow-ups with clear accountability.

13. Serve as a communication bridge between technical teams and business leadership on security initiatives.

Qualifications and Experience:

1. 5-8 years of experience in technical program or project management, with at least 3 years in cybersecurity or information security.

2. Strong understanding of cloud platforms (AWS, Azure, GCP) and security in cloud-native architectures.

3. Experience with compliance frameworks such as ISO 27001, NIST, DPDPA.

4. Proven track record of delivering complex, cross-functional programs in a fast-paced environment.

5. Proficient with project management & ticketing tools (e.g., Jira) and documentation platforms (e.g., Confluence).

6. Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field and relevant project management certifications like PMP, Prince 2 are preferred.