Listing Description
The Upstox Story:
Upstox is one of India's leading Fin-Tech companies with a mission to simplify trading & investing to make it easily accessible to the masses. We aim to enable everyone, from new investors to seasoned traders, to invest across multiple categories with our state-of-the-art trade & investment platform and commission-free pricing. We offer numerous asset categories to invest in, like Stocks, IPOs, Mutual Funds, and more.
By focusing on our customers’ needs and equipping them with personalised yet powerful tools, we witnessed a steep growth of 800% in our customer base from 25 Thousand in 2017 to 2 Lakh in 2019. With 1500% growth in 2020, currently, over 10 million customers trust us with their investment decisions, thus setting us on the course to become an industry-leader in the country.
Our mission is simple - to break down the complexities of investing and make it more effortless, accessible, affordable, and easy for the masses to adopt. This key principle when infused with intuitive design and leading-edge technology will help us empower every Indian to take control of their investments.
RKSV Securities was founded by Ravi Kumar and Shrinivas Viswanath in 2009 and was soon graced by Kavitha Subramanian as the third co-founder in 2016. Backed by Ratan Tata, Upstox had raised $4 million in Series A funding in early 2016 that was led by Kalaari Capital. The Series B funding round scaled multifold and witnessed an investment of $25 million by US-based investment firm - Tiger Global Management in September 2019.
We have a team of highly skilled technology and finance professionals, and are currently looking for highly motivated field experts to be part of our high-energy team.
Here is what you need to know about this role:
Job title: Security Engineer III - GRC
Location: Mumbai /Bangalore
Team: Technology - Security
Work type: Full Time (Onsite)
Roles & Responsibilities
1) Create / update processes & policies/procedures.
2) Perform Risk Assessment, assign risk severity score/rating, and track / report the mitigation plans to remediate identified risks.
3) Coordinate with Auditors and internal stakeholders and facilitate Audits like ISO 27001 , ISO 27701 , PCI- DSS , regulatory audits and findings closure by follow-up with respective teams.
4) Work closely with different IT Groups to continuously identify, mitigate, and manage cyber security risks.
5) Manage security awareness program for employees Conduct thorough assessments of third-party vendors to identify potential cybersecurity risks.
6) Performing Privacy related activities like Privacy impact assessment (PIA) , Records of processing activities (ROPA) and Data mapping etc.
Experience Required:
1) 5 Years of experience in managing GRC related work.
2) Managed & performed risk assessments.
3) Have a good understanding of data security & privacy.
4) Experienced in defining & establishing policies & procedures tailored to cloud environments.
5) Experience in Privacy assessment and implementations.
Good To Have:
1) Technical understanding or experience in implementing cloud security controls.
3) Experience in implementing cybersecurity requirements from SEBI / IRDAExperience in performing quantitative risk assessments.
4) CISA, CISM, CRISC certifications are desirable.
Psst Tips On How You Can Beat The Competition:
1) If you can showcase your abilities to: Be self-driven / quick starterHave an ownership mindset.
2) Aggressively drive and deliver results
3) If you fit the above description, we would love to connect with you! APPLY NOW
4) A basic requirement but one that many forget: Make sure you go through our website, download our app and give us feedback!
Upstox is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or other characteristics.
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Not Provided