Internal Audit - IT Security

2 Months ago • 5-7 Years • Cyber Security

Job Summary

Job Description

Paytm is seeking an experienced Information Security and Cloud Security Auditor to join their Internal Audit team. The role involves conducting comprehensive IT and cloud security audits, ensuring compliance with regulations, and enhancing security policies. Responsibilities include assessing IT General Controls, Information Security Controls, Cloud Security, Network Security, Vulnerability Management, and Vendor Risk Assessments. The auditor will validate ITGC, cloud security, and application-specific controls, manage audit documentation, and follow up on non-compliance issues. The position also entails managing third-party risk assessments and participating in product selection processes with a focus on cloud security. Experience in cloud security, cybersecurity frameworks, and security assessment tools is crucial.
Must have:
  • 5+ years in information security and auditing
  • Cloud security expertise
  • Perform IT and cloud security audits
  • Validate ITGC and cloud application controls
  • Hands-on with vulnerability management
  • Risk management experience
  • Third-party risk management expertise
  • Regulatory compliance knowledge
  • Strong analytical and problem-solving skills
  • Excellent communication and documentation skills
  • Proficiency in security and cloud technologies
Good to have:
  • Banking sector experience preferred
  • ISO 27001/CNSS/CCNA/CISA/CISM/CISSP certification
Perks:
  • Collaborative output-driven program
  • Opportunity to improve average revenue per use
  • Solid 360 feedback
  • Respect earned from peers and managers
  • Opportunity to create wealth
  • Be part of India's largest digital lending story

Job Details

About Us:
 
Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology.
 
About Team :
 
The Internal Audit team at Paytm comprises seasoned professionals with diverse skill sets and experience across different verticals like process audits, technology audits and forensics. The team focuses on implementing the approved audit plan, ensuring delivery of qualitative audits and conducting internal / special reviews while leveraging technology & data analytics and gauging key risks across business processes.
 
About the role:
We are seeking an experienced and detail-oriented Information Security and Cloud Security Auditor to join our team. The ideal candidate will have 3-7 years of expertise in data security and privacy control implementation, internal auditing, third-party risk management, cybersecurity governance, and cloud security (banking sector preferred). This role will be responsible for conducting comprehensive IT and cloud security audits, ensuring compliance
with regulatory requirements, and enhancing our information security policies and procedures.

Key Responsibilities:
 Conduct IT and cloud security audits across various domains, including IT General
Controls, Information Security Controls, Cloud Security, Network Security, Vulnerability
Management, and Vendor Risk Assessments.
 Assess compliance with relevant laws, regulations, and organizational policies, providing
expertise in regulatory requirements specific to both on-premises and cloud
environments.
 Develop and enhance information security and cloud security policies and procedures in
alignment with industry best practices.
 Maintain thorough documentation of audit findings, risk assessments, and security
measures for internal and external reporting.
 Validate ITGC, cloud security, and application-specific controls, and manage audit
documentation including risk assessments, working papers, audit program checklists, and
evidence gathering.
 Follow up on and ensure closure of non-compliance issues identified during audits.
 Manage and oversee third-party risk assessments and audits, ensuring robust security
controls are in place for both traditional and cloud-based service providers.
 Lead and participate in the development, migration, and implementation of security
controls and policies for network and cloud security solutions.
 Conduct risk-based security assessments on internal, vendor, and third-party hosted
environments, focusing on both traditional IT and cloud infrastructure.
 Participate in product and vendor selection processes, contributing to the implementation
and integration of new technologies, with a strong emphasis on cloud security solutions.

Experience/ Skills Required:
 Minimum 5 years of experience in information security and auditing, with a strong
background in cloud security, and the banking and IT industries.
 Proven experience in performing IT and cloud security audits, validating ITGC and cloud
application controls, and maintaining audit documentation.
 Hands-on experience with vulnerability management, risk management, physical security,
identity & access management, encryption, secure development, incident management,
security infrastructure, and security policy for both on-premises and cloud environments.
 Expertise in third-party risk management, regulatory compliance, and managing IT audit
findings in both traditional and cloud-based contexts.
 Strong analytical and problem-solving skills.
 Excellent communication and documentation skills.
 Ability to manage multiple projects and meet deadlines.
 Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.
 Proficiency in using various security assessment tools and technologies, particularly
those related to cloud environments.
 Strong analytical and problem-solving skills.
 Excellent communication and documentation skills.
 Ability to manage multiple projects and meet deadlines.
 Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.
 Proficiency in using various security assessment tools and technologies, particularly
those related to cloud environments.

Qualifications & Certification:
 Bachelor's / Master’s degree in Information Technology, Cyber Security, or a related field.
 ISO 27001/CNSS/CCNA/CISA/CISM/CISSP Preferred
 Detailed knowledge of security tools, PCI-DSS, general ITGC controls, compliance testing, cloud risk assessment, GRC, OWASP, MITRE ATT&CK, change management, and policies and procedures.
 Proficiency in various security and cloud technologies including AWS, Azure, Google Cloud Platform, Palo Alto, Fortinet & Checkpoint Firewalls, SOAR (Cortex), Force scout

 Why join us
 
1.  A collaborative output driven program that brings cohesiveness across businesses through technology
2.  Improve the average revenue per use by increasing the cross-sell opportunities
3.  A solid 360 feedback from your peer teams on your support of their goals
4. Respect, that is earned, not demanded from your peers and manager
 
Compensation:
 
If you are the right fit, we believe in creating wealth for you
With enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it. India’s largest digital lending story is brewing here. It’s your opportunity to be a part of the story!
 

Similar Jobs

binance - Product Manager - KYC

binance

Taipei City, Taiwan (Hybrid)
3 Years ago
Sabre India - Product Support Analyst I

Sabre India

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
aspyr - Senior Software Engineer

aspyr

Austin, Texas, United States (On-Site)
3 Months ago
FORTUNE - Video/Audio Producer

FORTUNE

New York, United States (On-Site)
1 Month ago
WebFX - Marketing Designer (Cape Town)

WebFX

Cape Town, Western Cape, South Africa (On-Site)
10 Months ago
neural concept - IT & Security Innovation Specialist

neural concept

Lausanne, Vaud, Switzerland (Hybrid)
1 Month ago
Canonical - Security Engineer - Ubuntu

Canonical

(Remote)
3 Months ago
Glocomms - Information Security Engineer

Glocomms

New York, United States (On-Site)
2 Months ago
AppLovin - Information Security Analyst

AppLovin

Palo Alto, California, United States (On-Site)
1 Month ago
Ethos Life - Principal Security Engineer

Ethos Life

San Francisco, California, United States (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Visa - Account Executive

Visa

Amsterdam, North Holland, Netherlands (Hybrid)
1 Month ago
dbt Labs - Vice President, Demand Generation

dbt Labs

United States (Remote)
4 Weeks ago
Ion - Senior Associate

Ion

London, England, United Kingdom (On-Site)
4 Months ago
Thales - System and Security Administrator (M/F)

Thales

Cholet, Pays De La Loire, France (Hybrid)
4 Weeks ago
Guardian - Lead Auditor, Investments, Corporate Finance & Risk

Guardian

Bethlehem, Pennsylvania, United States (Hybrid)
3 Months ago
WongDoody - (XD) Experience Designer, Snr.

WongDoody

Australia (On-Site)
11 Months ago
Tesla - Senior Service Technician

Tesla

Porto, Porto District, Portugal (On-Site)
6 Months ago
Zuru - Community Manager, Toys

Zuru

Auckland, Auckland, New Zealand (On-Site)
1 Month ago
Halcyon - Senior Manager, Product Marketing

Halcyon

(Remote)
1 Month ago
Bazaar Voice - Technical Writer

Bazaar Voice

Belfast, Northern Ireland, United Kingdom (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Noida, Uttar Pradesh, India

Trellix - Sr. Software Engineer

Trellix

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Capgemini - Enterprise Security

Capgemini

Gurugram, Haryana, India (On-Site)
3 Months ago
Virtana Corp - Senior Software Engineer

Virtana Corp

Pune, Maharashtra, India (Remote)
10 Months ago
Landor - Junior Project Manager

Landor

Mumbai, Maharashtra, India (Hybrid)
1 Month ago
Hitachi - Microsoft Dynamics AX Technical Consultant (D365 F&O)

Hitachi

India (Remote)
10 Months ago
Salesforce - Lead Specialist Solution Engineer

Salesforce

Mumbai, Maharashtra, India (On-Site)
4 Weeks ago
high radius - Product Implementation Consultant - Accounts Payable

high radius

Hyderabad, Telangana, India (On-Site)
1 Month ago
Mfinity infotech - Game Developer - Trainee

Mfinity infotech

Ahmedabad, Gujarat, India (On-Site)
1 Month ago
world resource institute - Learning & Development (L&D) Consultant – Workday Enablement

world resource institute

New Delhi, Delhi, India (On-Site)
1 Month ago
Blinkhealth - Senior Cloud Infrastructure Engineer

Blinkhealth

India (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Loft Orbital - Senior Security Engineer

Loft Orbital

France (Remote)
3 Months ago
binance - Web3 Security Senior Software Engineer

binance

Taipei City, Taiwan (Remote)
8 Months ago
Corsair gaming - Sr. IT Information Security Manager

Corsair gaming

Duluth, Georgia, United States (On-Site)
2 Months ago
Pomelo - Security and Compliance Analyst

Pomelo

United States (Remote)
1 Month ago
Glocomms - Senior Cybersecurity Engineer

Glocomms

Boston, Massachusetts, United States (On-Site)
3 Months ago
Marvell - Lab Endpoint Cyber Security Engineer

Marvell

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Optiv - Sr. Client Manager - Cybersecurity

Optiv

Winnipeg, Manitoba, Canada (On-Site)
3 Months ago
CAE - 116388 Cybersecurity Operations - DLP & EDR Specialist

CAE

Montreal, Quebec, Canada (On-Site)
4 Weeks ago
bounteous - Senior Information Security Analyst

bounteous

Chennai, Tamil Nadu, India (On-Site)
7 Months ago
bytedance - Senior Software Engineer - Network Security

bytedance

San Jose, California, United States (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Rajkot, Gujarat, India (On-Site)

Mumbai, Maharashtra, India (Hybrid)

Goa, India (On-Site)

Noida, Uttar Pradesh, India (On-Site)

Ahmedabad, Gujarat, India (On-Site)

Mumbai, Maharashtra, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Pune, Maharashtra, India (On-Site)

Noida, Uttar Pradesh, India (On-Site)

Noida, Uttar Pradesh, India (On-Site)

View All Jobs

Get notified when new jobs are added by Paytm

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug