Information Security Lead - Hyderabad, India - NxtWave

    NxtWave
    NxtWave Hyderabad, India

    1 month ago

    Default job background
    Description

    About Nxtwave:

    NxtWave is founded by Rahul Attuluri (Ex-Amazon, IIIT Hyderabad), Sashank Reddy (IIT Bombay), and Anupam Pedarla (IIT Kharagpur). In February 2023, NxtWave raised ₹275 crore led by Greater Pacific Capital, a leading international private equity firm. The startup is also backed by Orios Ventures, Better Capital, and marquee angels, including founders of some of India's unicorns.

    NxtWave is one of India's fastest-growing Ed-Tech startups, revolutionizing the 21st-century job market by transforming youth into highly skilled tech professionals irrespective of their educational background with its CCBP 4.0 programs.

    As an official partner for NSDC under the Ministry of Skill Development & Entrepreneurship, Government of India, and recognized by NASSCOM, Ministry of Commerce and Industry, Government of India, and Startup India, NxtWave has earned a reputation for excellence. The startup has received accolades such as 'The Greatest Brand in Education' in a research-based listing by URS Media, a leading international media house. NxtWave has also been honored with the "Startup Spotlight Award 2023" by T-Hub on its 8th Foundation Day.

    Recently, NxtWave's founders, Anupam Pedarla and Sashank Gujjula, were honored in the 2024 Forbes India 30 Under 30 for their exceptional contribution to transforming the tech education landscape in India.

    The edtech brand eliminates the entry barrier to learning tech skills by offering vernacular content and interactive learning. Learning in one's mother tongue helps achieve higher comprehension, deeper attention, longer retention, and greater outcomes.

    Presently, NxtWave has paid subscribers from 647+ districts across India. In just 2.5 years, CCBP 4.0 learners have been hired by 1700+companies , including Google, Amazon, Nvidia, Goldman Sachs, Oracle, Deloitte, and more.

    Know more about NxtWave:

    • Our page: Link
    • Next wave of opportunities with 1700+ companies - Link
    • 33M funding news - Link
    • Youtube Channel - Link
    • Impact Stores on - Link

    Read more about us in the news - Economic Times | CNBC | Yourstory | VCCircle

    Opportunity

    Nxtwave is seeking an Information Security Lead to establish and grow our IT & Security team. As a foundational member, you will shape our security program, build compliant systems from scratch, and steer our strategic direction. This pivotal role offers significant growth potential and leadership opportunities in a dynamic environment, ideal for those eager to lead and innovate. With outstanding performance, there is a clear pathway to advance to the Chief Information Security Officer (CISO) position.

    Responsibilities

    • Design and implement security solutions across the organization, including robust cyber defense architecture and security strategies.
    • Collaborate with cross-functional teams to ensure the secure design and implementation of applications and services, thereby enhancing overall system security.
    • Work with third-party consultancies to achieve ISO 27001 certification and ensure compliance with regulatory requirements, including the management of vendor due diligence and third-party contracts.
    • Develop, implement, and document comprehensive security architecture and plans, including strategic, tactical, and project-specific initiatives.
    • Stay updated with the latest security trends and technologies, evaluate new security tools, and implement cutting-edge solutions to fortify defenses.
    • Lead initiatives to establish an information security management system, encompassing security governance, strategy setting, incident response plans, and security awareness training.
    • Implement and optimize the security program, managing aspects like vulnerability assessments, incident response, access control, and security awareness.
    • Develop and manage a governance, risk, and compliance (GRC) framework to automate and continuously monitor information security controls, while developing reporting metrics and dashboards.
    • Recruit and train team members of Information security professionals as required to achieve desired outcomes.

    Skills & Experience

    • Must have experience implementing a variety of security solutions such as EDR and patch management systems.
    • Experienced with compliance frameworks like ISO 27001 and SOC 2, including implementing requirements and leading audits.
    • Proficient in scripting with knowledge of PowerShell, Bash, and Ansible.
    • Strong understanding of the security domain, able to technically implement solutions based on specific needs.
    • Knowledgeable in web application security, including penetration testing and secure design practices. Familiar with tools like BurpSuite, Kali Linux, Nessus, ZAP, and Qualys.
    • Well-versed in threat modeling and common software vulnerabilities, including CWE top 25 and OWASP top 10.
    • Deep understanding of the threat and attack landscape, latest security trends, and attack vectors.
    • Experienced in Cloud Security Architecture and fundamentals, including containers, AWS, software-defined networks, high availability design, multi-cloud, and serverless computing.
    • Experience working in an AGILE environment with excellent verbal and written communication skills

    Work Location: Hyderabad