Security & Compliance Consultant Job in Payu

About Company:

PayU, the fintech-arm of Naspers, is a leading financial services provider in global growth markets. We use our expertise and heritage in cross border and local payments to extend the services we offer to merchants and consumers. Our innovative technology, developed in-house as well as through investments and strategic partnerships, empowers billions of people and millions of merchants to buy and sell online, extending the reach of financial services.

Our local operations span 18 growth markets across Asia, Central and Eastern Europe, Latin America, the Middle East and Africa. Here we deliver fast, simple and efficient financial services technology that unlocks access to more than 2.3 billion consumers in our regions.

Regulated under the Reserve Bank of India, PayU India has advanced solutions to meet every digital payment need. The company has an in-depth understanding of the vast and intricate details of the Indian market and its payment landscape. The company brings convenience and trust through continuous innovation leveraging technology.

PayU India forays into two business verticals payment offerings under PayU Payments Services Ltd. and alternate lending under PayU Finance. Headquartered in Sohna Road, Gurgaon, the company has a presence in Mumbai, Pune and Bangalore and has a total strength of 700+ employees. Anirban Mukherjee is the CEO for PayU India working with the global CEO Laurent Le Moal.

Under the aegis of PayU Payments Services Ltd., PayU provides payment gateway solutions to online businesses through its cutting-edge and award-winning technology. In India, PayU covers nearly 60% of the airline business and 90% of the entire e-commerce business and processes over INR 120,000 crores worth of digital payments annually (at current run rates). The company offers more than 70 local payment methods and serves more than 350,000 merchants including leading e-commerce businesses in India. The company also empowers SMBs, enabling them to accept mobile and online payments with minimum development effort.

With credit being the key business priority, PayU has also developed LazyPay, an alternate lending platform to offer credit solutions such as Small Ticket Credit (Buy Now, Pay Later), App based personal loans and Point of Sale Credit (Merchant EMI). Since its launch in 2017, LazyPay has gained significant traction and has disbursed 20mn+ loans to a customer base of a million user.

PayU is bullish on investment opportunities in India. The company has been an aggressive investor, committed to the evolution of fintech in the country. PayU has spent about $250 million over the past three years in Asias third-largest economy and is further scouting for more lucrative investment and acquisition opportunities to fuel growth.

PayUs acquisitions in India include that of Wibmo (April 2019 worth $70 mn) and Citrus Payment Solutions (September 2016 for $130 mn). PayU has also invested in PaySense (July 2018) and ZestMoney (December 2016) in India.

Main Responsibilities:

Experience in information security management and related functions such as ISO27001,
Ability to align information security policies with business requirements
Flair for translating information security requirements into IT security controls & measures
ISO27001 LA Certified or equivalent Preferred, CISA/CISSP.
Excellent communication skills both written & oral
Project management skills & an ability to translate business requirements into technical IT security deliverables
Competencies:
Conduct information security management reviews and information security management system (ISMS) assessments
Ensure technical implementation and business processes are aligned
Lead the design, implementation, operation and maintenance security management systems
Participate in the creation, review and update of information security policies
Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied
Strong understanding of NIST bench marks, ISO 27001, SOC 2 principles and Cyber Security Best Practices
Experience in program or project management, auditing, and/or control framework development and implementation
Experience in compliance documentation related to Policy, Procedures and ensuring that committed certification and assessments are delivered on schedule