Information Security Lead
Bengaluru, Karnataka, India
Applications have closed
FAIRMATIC
Powered by data and AI, focused on rewarding fleet safety with savings. Finally, a smarter insurance option designed to put fleets in control.Location: Fully Remote
At Fairmatic we’re on a mission to make roads safer, one fleet at a time. We think about insurance, risk and underwriting in an unconventional way. Auto insurance has always been unfair: safe and unsafe drivers that look alike pay the same. Because of this, safe drivers end up subsidizing risky ones. It doesn’t make sense. We’re using data and AI to introduce a personalized option that incentivizes safe driving with savings. Our predictive risk models have been trained with nearly 200 billion miles of driving data and tested with hundreds of thousands of paying drivers with industry-leading underwriting results. And we’re just getting started.
Our leadership team includes serial entrepreneurs, insurance industry savants and start-up veterans. We’ve raised $42M from leading VCs as well as insurtech, fintech and technology industry angel investors.
At Fairmatic we do our best work while living our best lives, regardless of where we are. We have thriving teams across the globe and we are constantly looking for talented folks to welcome into the family. We are a curious, adaptable and diverse bunch of technologists and problem solvers who are obsessed with creating a positive impact in the world. In our work together, we strive for close collaboration, humbleness and constant learning.
We are looking for a motivated and talented Information Security Lead to own and spearhead Information security initiatives for the digital privacy and security of our end users, SaaS and Insurance Products. In this role, you will work across teams with insurance and engineering backgrounds to introduce and implement ISMS policies, meet compliance requirements and develop secure engineering practices. You will take part in the product development process to devise and implement strategies (platform, processes, tools, etc) for application and data security.
#LI-Remote
Requirements
A day in the life:
- Lead company-wide information security initiatives to meet privacy, compliance and regulatory requirements, for e.g. CCPA, SOC-II
- Own Product security and ensure data security & privacy aspects are continuously monitored through reviews of product & enggineering designs.
- Implement the procedures and policies as documented in the company ISMS (Information Security Management System). Perform regular audits, and work with HR / IT etc to ensure security practices are compliant as stipulated in ISMS - evolve and improve the ISMS as appropriate.
- Develop and implement tools to assist in the vulnerability management, detection, prevention, and analysis of security threats - and monitor the same
- Exemplify and foster Fairmatic’s humble, collaborative and impact-obsessed culture
What you will need:
- 5+ years of hands-on experience in DevSecOps, Security Analysis and Threat intelligence
- Should have led the stratergy and implementation of a known data security standard such as ISO 27001, SOC-II, CCPA, GDPR, etc - along with hands-on experience with maintenance of the same
- Ability to guide and influence product and engineering design as part of the Product Development Life Cycle, so that they adhere to security policies, and best practices
- A good foundational understanding of modern Web application design and network architectures. For e.g. HTTP APIs and related protocols, Cloud Infrastructure, and Mobile (Android / iOS) platforms
- Developer background is a plus, working with a modern programming language - we use Python - familiar with developer best practices, and standards such as OWASP, etc
- Excellent verbal/written communication skills
- Self-driven and able to work independently
- Comfortable working in a highly agile, intensely iterative software development process
Benefits
- Employee Health Insurance Program
- Unlimited Holiday
- Mobile and Broad Band Allowance
- Entertainment Allowance
- Wellbeing allowance
- Pension Contibution
- Private Medical Care
Tags: Agile Android APIs Audits CCPA Cloud Compliance DevSecOps FinTech GDPR iOS ISMS ISO 27001 OWASP Privacy Product security Python SaaS Security analysis SOC Threat intelligence Vulnerability management
Perks/benefits: Career development Flex vacation Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs