Information Security

@ Snapmint

About Snapmint

Snapmint is a leading fintech company redefining access to consumer credit in India. With over 10 million customers across 2,200+ cities, our zero-cost EMI platform enables responsible purchases without the need for a credit card across fashion, electronics, and lifestyle categories. The company is founded in 2017 by experienced alumni from IIT Bombay and ISB, with backgrounds from Oyo, Ola, and Maruti Suzuki. Snapmint is profitable and growing rapidly, focusing on financial inclusion and ethical lending practices.

Role Overview

We are seeking a senior Information Security leader to define and drive the cybersecurity vision for the company. This strategic role focuses on safeguarding critical digital assets, ensuring compliance, and enhancing our overall security posture in a regulated financial environment.

Key Objectives

• Lead information security and risk management strategies.
• Safeguard data, intellectual property, and technology assets.
• Ensure compliance with data privacy and cybersecurity regulations.
• Develop and enforce security policies and incident response plans.
• Collaborate with business and IT leaders for operational resilience.

Key Responsibilities

• Design and manage a comprehensive cyber security program.
• Conduct risk assessments and manage security controls for on-prem and cloud infrastructure.
• Lead incident detection, response, recovery, and continuous improvement.
• Ensure compliance through audits, regulatory reporting, and vulnerability assessments.
• Promote security awareness and cross-functional engagement across the organization.
• Monitor evolving threats and advise leadership on risks and emerging technologies.

Required Qualifications

• Bachelor’s degree in Information Security, Computer Science, or related field.
• 4-8 years in a senior information security role in fintech or regulated financial services.
• Strong grasp of cybersecurity frameworks, threat modeling, and risk governance.
• Hands-on experience with firewalls, IDS/IPS, encryption, and core technologies.
• In-depth knowledge of data protection laws and regulatory standards.
• Proven leadership in developing high-performing security teams.

Preferred Qualifications

• Certifications such as CISSP, CISM, CISA.
• Experience securing cloud platforms (AWS, Azure, GCP).
• Familiarity with DevSecOps, secure SDLC, and application security.
• Background in penetration testing, ethical hacking, or incident forensics.
• Proficiency with SIEM and security analytics tools.
• Exposure to AI/ML applications in cybersecurity is a plus.

Location

Mumbai, India

Key skills/competency

• Cybersecurity
• Risk Management
• Compliance
• Incident Response
• Data Protection
• Cloud Security
• Regulatory Standards
• Threat Modeling
• Leadership
• Security Audits