Senior Security Analyst - GRC

9 Months ago • 4-7 Years • Cyber Security

Job Summary

Job Description

As a Senior Security Analyst - GRC, you will be a key player in ensuring compliance with rigorous standards like ISO 27001, PCI DSS, and RBI guidelines. Your responsibilities will include planning and executing audits, maintaining security policies, assessing risks, managing third-party risk, and driving security awareness. This role requires collaboration with various teams to ensure the company's secure operations within the fintech industry.
Must have:
  • 4-7 years in Information Security/Risk Management
  • Strong grasp of frameworks: ISO 27001, PCI DSS, NIST
  • Exposure to Indian finance regulations (RBI, SEBI, NPCI)
  • Strong communication and analytical skills
Good to have:
  • Relevant certifications preferred: CISM, CISSP, CISA
  • Understanding of cloud infra, SaaS environments, and security tooling
Perks:
  • 20 days of paid time off + unlimited sick leave
  • Generous parental leave
  • Daily lunches, stocked micro kitchen, in-house gym, and Biryani Fridays
  • Medical + life insurance for you and your family
  • 24x7 mental health support
  • Learning Stash — a fund for your upskilling and certifications
  • FiAspire Projects — our internal gig program to explore new roles and skills
  • Game rooms, Premier Leagues, and a genuinely fun work culture

Job Details

Fi is a money management platform that helps people get better with their money — spend smarter, save better, and take control of their financial journey.
We’re not a bank — we’re reimagining how people interact with money. Founded by the team behind Google Pay India, we’re a Series C startup valued at $550M, backed by top-tier investors like Sequoia, Ribbit Capital, and Alpha Wave. Our mission is simple: help Indians maximise their financial potential — through thoughtful design, deep tech, and zero jargon.

Senior Security Analyst – GRC
This role sits at the intersection of regulations, real-time fintech, and secure scale. If you’re someone who enjoys digging into frameworks, translating policy into practice, and shaping how a fast-growing startup approaches trust and compliance — you’ll thrive here.
You’ll be a key part of a small, high-trust team, working directly with Engineering, DevOps, Legal, and Product to ensure Fi stays compliant with some of the most rigorous standards — ISO 27001, PCI DSS, RBI guidelines, and beyond.
We’re proud winners of the Best Digital Banking Security Practices Award – GFF 2024, and this role is central to how we earned it — and how we’ll keep raising the bar.

What you will do:

    • Own the planning, coordination, and execution of internal and external audits.
    • Maintain and review InfoSec policies, risk registers, and control implementation status.
    • Ensure ongoing compliance with frameworks like ISO 27001, PCI DSS, RBI, NPCI, SEBI and more.
    • Help assess and treat IT and third-party risk, and maintain audit-ready documentation.
    • Lead and streamline the vendor due diligence and TPRM (third-party risk management) process.
    • Collaborate cross-functionally to drive security awareness and control implementation.
    • Use project management skills to communicate, track, and unblock audit deliverables.

What we are looking for:

    • 4–7 years in Information Security, Risk Management, or IT Audit roles.
    • Strong grasp of frameworks: ISO 27001, PCI DSS, NIST.
    • Exposure to Indian finance regulations (RBI, SEBI, NPCI) is a big plus.
    • Relevant certifications preferred: CISM, CISSP, CISA.
    • Bonus if you understand cloud infra, SaaS environments, and security tooling.
    • Independent, proactive, and great at cross-functional collaboration.
    • Strong communication and analytical skills.

What you get at Fi:

    • 20 days of paid time off + unlimited sick leave
    • Generous parental leave
    • Daily lunches, stocked micro kitchen, in-house gym, and Biryani Fridays
    • Medical + life insurance for you and your family
    • 24x7 mental health support
    • Learning Stash — a fund for your upskilling and certifications
    • FiAspire Projects — our internal gig program to explore new roles and skills
    • Game rooms, Premier Leagues, and a genuinely fun work culture
How We Work
We’re currently working from our office in Bangalore.
Once you apply, our team will reach out to schedule 3–4 rounds of interviews — to assess your domain expertise, problem-solving ability, and fit for our high-trust, high-ownership culture.


We aspire to create an inclusive culture of diverse people not just because it's the right thing to do but because heterogeneity inspires us and is more fun! We employ people solely on merit and do not discriminate against any employee or applicant because of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, marital status, pregnancy or related condition (including breastfeeding), or any other basis protected by law.

Similar Jobs

GT HQ - Full-Stack Developer (Ruby + React)

GT HQ

(Remote)
3 Months ago
USE Insider - Recruiter - LATAM

USE Insider

State Of São Paulo, Brazil (Hybrid)
3 Weeks ago
Cognite - Senior Solution Architect

Cognite

Phoenix, Arizona, United States (Hybrid)
2 Months ago
C3 IoT - Group Vice President, UKI

C3 IoT

London, England, United Kingdom (On-Site)
4 Days ago
Devoted Studios - Product Manager - B2B SaaS Platform

Devoted Studios

(Remote)
1 Month ago
Qualcomm - Security and Access control - Lead/Staff Engineer

Qualcomm

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Anavation - Network Security Engineer

Anavation

Clarksburg, West Virginia, United States (Hybrid)
3 Months ago
Appirits - Security Engineer

Appirits

Tokyo, Japan (Hybrid)
5 Months ago
CAE - Cybersecurity Systems Engineer

CAE

Binghamton, New York, United States (On-Site)
1 Month ago
Jane Street - Cybersecurity Governance and Risk Specialist

Jane Street

Hong Kong (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Globalization Partners - Principal Software Engineer

Globalization Partners

Northern Ireland, United Kingdom (Remote)
1 Month ago
Sailpoint - Solution Architect

Sailpoint

Pune, Maharashtra, India (On-Site)
1 Year ago
Aisera - Campaign and Growth Marketing Specialist

Aisera

Palo Alto, California, United States (On-Site)
2 Months ago
Temporal Technologies - Staff Software Engineer - Open Source Server

Temporal Technologies

United States (Remote)
1 Week ago
Instrumental - Inbound Account Executive

Instrumental

(Remote)
3 Months ago
Simcorp - Service Delivery Consultants (Investment/Asset Management)

Simcorp

Hong Kong, Hong Kong (Hybrid)
2 Months ago
GoMotive - Sales Engineer, Commercial

GoMotive

United States (Remote)
1 Week ago
Accenture - Service Delivery Ops Specialist

Accenture

Hyderabad, Telangana, India (On-Site)
1 Month ago
Loyalty Juggernaut - Product Engineer (Angular)

Loyalty Juggernaut

Hyderabad, Telangana, India (On-Site)
1 Year ago
The Walt Disney Company - Principal Data Engineer, Architect

The Walt Disney Company

Seattle, Washington, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Postman - Senior Engineer (Backend), Product Trust (Technical Lead Role)

Postman

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
velotio technologies  - Senior Engineer (Data Engineer- Databricks)

velotio technologies

Pune, Maharashtra, India (Remote)
1 Month ago
Capgemini - Datacom Developer- Lead

Capgemini

Chennai, Tamil Nadu, India (On-Site)
1 Month ago
WebMD - Senior Site Reliability Engineer

WebMD

Mumbai, Maharashtra, India (On-Site)
3 Months ago
ISS Stoxx - Senior Python Full Stack Developer

ISS Stoxx

Mumbai, Maharashtra, India (On-Site)
1 Month ago
Autodesk - Senior Software Engineer (Power Platform)

Autodesk

Bengaluru, Karnataka, India (On-Site)
1 Year ago
AiDash - Software Development Engineer - II DevOps

AiDash

Bengaluru, Karnataka, India (Hybrid)
8 Months ago
Rackspace Technology - Site Reliability Engineer III

Rackspace Technology

India (Remote)
4 Months ago
Capgemini - Contract Management

Capgemini

Noida, Uttar Pradesh, India (On-Site)
4 Months ago
Qualcomm - Security and Access control - Lead/Staff Engineer

Qualcomm

Bengaluru, Karnataka, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Canonical - Security Software Engineer

Canonical

(Remote)
1 Month ago
bytedance - Software Engineer, Global Payment Privacy & Security

bytedance

San Jose, California, United States (On-Site)
3 Months ago
CyberArk - Security Services Engineer

CyberArk

United States (On-Site)
2 Weeks ago
nubank - Senior Security Engineer - Regulatory Requirements

nubank

State Of São Paulo, Brazil (On-Site)
1 Week ago
Autodesk - Principal Security Engineer, Device Trust

Autodesk

Toronto, Ontario, Canada (On-Site)
1 Month ago
Cubic corporation - Security Operations Engineer

Cubic corporation

Hyderabad, Telangana, India (On-Site)
3 Weeks ago
PwC - Cyber Security Architect

PwC

Amsterdam, North Holland, Netherlands (On-Site)
6 Months ago
Scopely - Senior Security IAM Engineer

Scopely

Barcelona, Catalonia, Spain (Hybrid)
4 Months ago
Optiv - Associate Cyber Security Advisor - Commercial Northeast

Optiv

Boston, Massachusetts, United States (Remote)
1 Month ago
Trend Micro - Staff/Sr. Cloud Service Engineer (VicOne_ Automotive Security)

Trend Micro

Taipei City, Taiwan (On-Site)
9 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

View All Jobs

Get notified when new jobs are added by Fi

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug