Information Security Lead - Wealth Management

Location: Delhi / Mumbai (On-site)

Experience: 57 Years

Industry: Financial Services / Wealth Management

Role Description

This is an on-site full-time role for an Information Security Lead (Wealth Management) located in Delhi, India. The Information Security Lead will oversee the development and implementation of security strategies, manage risk assessments, and ensure the protection of sensitive financial data and systems.

We are looking for a sharp, proactive Information Security Lead to spearhead our cybersecurity initiatives. In a high-stakes wealth management environment, your mission is to protect our HNIs data and ensure our digital infrastructure is a fortress. You will bridge the gap between complex security protocols and business growth, ensuring we stay ahead of both hackers and regulatory shifts. Responsibilities will include enhancing cybersecurity frameworks, monitoring threats, ensuring compliance with regulatory standards, and providing guidance on best practices in information security across the organization's operations. The role requires collaboration with cross-functional teams to ensure the highest level of data integrity and security.

Key Responsibilities

• Regulatory Command: Lead the implementation and monitoring of SEBIs CSCRF and other RBI/CERT-In guidelines specific to the Indian financial sector.
• AI Security & Governance: Architect secure guardrails for AI/ML integration, ensuring data privacy (PII masking) in LLM training, preventing prompt injections, and securing the data pipeline for automated wealth advisory tools.
• Risk Architecture: Conduct regular VAPT (Vulnerability Assessment & Penetration Testing), manage the InfoSec risk register, and oversee the SOC (Security Operations Center).
• Data Sovereignty: Ensure strictly localized data protection and encryption key management as per Indian regulatory expectations.
• Incident Response: Build and test incident response playbooks to maintain a Recovery Time Objective (RTO) of under 4 hours for critical trading systems.
• Vendor Governance: Audit third-party fintech partners and cloud service providers to ensure zero-compromise security standards.

What are we looking for

• Experience: 57 years in Information Security, with at least 23 years specifically in the Indian Wealth Management or AMC space.
• Tech Stack: Hands-on experience with DLP (Symantec/Forcepoint), Cloud Security (AWS/Azure), SIEM tools, and IAM frameworks.
• Familiarity with AI security & Governance
• Compliance DNA: Deep familiarity with ISO 27001, SOC2, and SEBIs 20242026 cybersecurity circulars.
• Certifications: CISSP, CISA, or CEH preferred.
• Soft Skills: The ability to explain "Zero Trust" to a Board of Directors as effectively as you explain it to a developer.
  

Qualifications

• Understanding of wealth management principles
• Knowledge of risk management and Insurance solutions as part of financial security strategies
• Proficiency in information security frameworks, cybersecurity tools, and risk assessment methodologies.
• Effective communication skills to engage with diverse teams and stakeholders.
• Experience with regulatory compliance and information assurance in financial institutions.
• Bachelor's or advanced degree in Finance, Cybersecurity, Information Systems, or a related field is preferred.