Head of Information Security
Hybrid - Bengaluru
Narvar
Personalized experiences that build loyalty. Smart actions that drive exceptional business outcomes. Powered by the Narvar Network: actionable intelligence from billions of interactions.Narvar is growing! We are looking for a Head of Information Security to spearhead security at Narvar, where you'll help drive decisions on how best to secure our platform & products. This role is incredibly critical to all things security at Narvar and for our consumer-facing SaaS products.
Day-to-day
- Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
- Work directly with the business units to facilitate risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk.
- Manage the development and implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of security.
- Incident response planning and the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches.
- Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.
- Provide assessments on privacy, security risks, security maturity, security controls, and gaps
- Responding to security incidents and breaches
What we’re looking for
- BS/MS in computer science, information systems, or equivalent
- Minimum of 10 years of experience in cloud & application security, with demonstrated experience supporting product teams with technical design input and security risk analysis.
- Secure coding and safe computing practices and code development
- Web security assessment (authentication and authorization, tokens, input validation, SSL, etc).
- Security architecture and risk mitigation for enterprise networks or cloud hardware infrastructure.
- Demonstrated understanding of network protocols (TCP/UDP, SSH, TLS, DNS, DHCP, IPMI, SNMP, etc).
- Knowledgeable about product security features, such as cryptography, blinding, etc
- Ability to analyze and stress-test software and conduct security design reviews
- Demonstrated experience in penetration testing, vulnerability scanning, static & dynamic source code analysis tools and techniques
- Familiarity with performing product security assessments, threat models, server side and network security, and various cryptographic algorithms and libraries
- Hands-on experience in finding software exploits and security holes
- Experience in secure coding and code analysis
- Solid knowledge of operating system designs, access and priority models
Why Narvar?
We're on a mission to simplify the everyday lives of consumers. Post-purchase is a critical phase of the customer journey. That's why we created Narvar - a platform focused on driving customer loyalty through seamless post-purchase experiences that allow retailers to retain, engage, and delight customers. If you've ever bought something online, there's a good chance you've used our platform!
From the hottest new direct-to-consumer companies to retail’s most renowned brands, Narvar works with GameStop, Neiman Marcus, Sonos, Nike, and 1300+ other brands. With hubs in San Francisco, Atlanta, London, and Bangalore, we've served over 125 million consumers worldwide across 10+ billion interactions, 38 countries, and 55 languages.
Pioneering the post-purchase movement means navigating into the unknown. Our team thrives on this sense of adventure while nurturing a mindset of innovation. We're a home for big hearts and we leave our egos at the door. We work hard but we always make time to celebrate professional wins, baby showers, birthday parties, and everything in between.
We are an equal-opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
#LI-SA1
#LI-Hybrid
Please read our Privacy Policy to learn what personal information we collect in connection with your job application, and how we may use and share it.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Cloud Code analysis Computer Science Cryptography DNS Exploits Incident response Network security Pentesting Privacy Product security Risk analysis Risk assessment Risk management SaaS Security assessment SSH TLS
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs