Head of Information Security

Narvar

Narvar

IT
Bengaluru, Karnataka, India
Posted on Thursday, April 25, 2024

Narvar is growing! We are looking for a Head of Information Security to spearhead security at Narvar, where you'll help drive decisions on how best to secure our platform & products. This role is incredibly critical to all things security at Narvar and for our consumer-facing SaaS products.

Day-to-day

  • Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
  • Work directly with the business units to facilitate risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk.
  • Manage the development and implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of security.
  • Incident response planning and the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches.
  • Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.
  • Provide assessments on privacy, security risks, security maturity, security controls, and gaps
  • Responding to security incidents and breaches

What we’re looking for

  • BS/MS in computer science, information systems, or equivalent
  • Minimum of 10 years of experience in cloud & application security, with demonstrated experience supporting product teams with technical design input and security risk analysis.
  • Secure coding and safe computing practices and code development
  • Web security assessment (authentication and authorization, tokens, input validation, SSL, etc).
  • Security architecture and risk mitigation for enterprise networks or cloud hardware infrastructure.
  • Demonstrated understanding of network protocols (TCP/UDP, SSH, TLS, DNS, DHCP, IPMI, SNMP, etc).
  • Knowledgeable about product security features, such as cryptography, blinding, etc
  • Ability to analyze and stress-test software and conduct security design reviews
  • Demonstrated experience in penetration testing, vulnerability scanning, static & dynamic source code analysis tools and techniques
  • Familiarity with performing product security assessments, threat models, server side and network security, and various cryptographic algorithms and libraries
  • Hands-on experience in finding software exploits and security holes
  • Experience in secure coding and code analysis
  • Solid knowledge of operating system designs, access and priority models

Why Narvar?

We're on a mission to simplify the everyday lives of consumers. Post-purchase is a critical phase of the customer journey. That's why we created Narvar - a platform focused on driving customer loyalty through seamless post-purchase experiences that allow retailers to retain, engage, and delight customers. If you've ever bought something online, there's a good chance you've used our platform!

From the hottest new direct-to-consumer companies to retail’s most renowned brands, Narvar works with GameStop, Neiman Marcus, Sonos, Nike, and 1300+ other brands. With hubs in San Francisco, Atlanta, London, and Bangalore, we've served over 125 million consumers worldwide across 10+ billion interactions, 38 countries, and 55 languages.

Pioneering the post-purchase movement means navigating into the unknown. Our team thrives on this sense of adventure while nurturing a mindset of innovation. We're a home for big hearts and we leave our egos at the door. We work hard but we always make time to celebrate professional wins, baby showers, birthday parties, and everything in between.

We are an equal-opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

#LI-SA1

#LI-Hybrid

Please read our Privacy Policy to learn what personal information we collect in connection with your job application, and how we may use and share it.