Sr. Associate Process & Compliance

Posted 20 Days Ago
Be an Early Applicant
Bangalore, Bengaluru, Karnataka
Mid level
Cloud • Fintech • Financial Services
The Role
The Sr. Associate of InfoSec Audit and Compliance will prepare for and support PCI DSS, ISO 27001, and SOC audits. This includes assessing IT architecture, conducting gap analyses, managing vendor risk, and maintaining compliance with regulatory standards. The role involves multi-tasking across various assignments, collaborating with stakeholders, and ensuring internal policies are adhered to.
Summary Generated by Built In

About Zeta

Zeta is a Next-Gen Banking Tech company that empowers banks and fintechs to launch banking products for the future. It was founded by Bhavin Turakhia and Ramki Gaddipati in 2015.

Our flagship processing platform - Zeta Tachyon - is the industry’s first modern, cloud-native, and fully API-enabled stack that brings together issuance, processing, lending, core banking, fraud & risk, and many more capabilities as a single-vendor stack. 20M+ cards have been issued on our platform globally.


Zeta is actively working with the largest Banks and Fintechs in multiple global markets transforming customer experience for multi-million card portfolios.


Zeta has over 1700+ employees - with over 70% roles in R&D - across locations in the US, EMEA, and Asia. We raised $280 million at a $1.5 billion valuation from Softbank, Mastercard, and other investors in 2021.

Learn more @ www.zeta.tech, careers.zeta.tech, Linkedin, Twitter


The Role: 

This role is part of the Information Security Process and Compliance Team of Zeta. The Sr. Associate of InfoSec Audit and compliance is responsible for preparing and supporting PCIDSS, ISO 27001 and SOC external Audits. Actively participate, strengthen and improve Internal Audit process and provide assurance on internal technology and process compliance. Collaborate with the Cloud and Product security team to drive Risk and compliance goals.

Responsibilities

  • Work with internal and external stakeholders to assess the IT architecture or proposed IT architecture solutions to identify the risk areas with regards to PCI controls.
  • Assess the network architecture and or reviews the Firewall rulesets, Network devices/appliances to see if they are aligned with the PCI control requirements and recommends compensatory controls where necessary.
  • Execute operational activities to support audit and compliance activities including technical validation processes.
  • Conduct PCI DSS scoping engagements, gap analysis and assessments related to securing the Cardholder Data Environment.
  • Effectively multi-tasks on multiple assignments and deliverables.
  • Actively accepts individual and team responsibilities to meet commitments. Takes responsibility for own performance and actions and demonstrates responsibility and teamwork towards overall team/department goals.
  • Discuss the SOP document with all relevant stakeholders - right from process owner to the BU functional heads Detailed understanding of SOC reports (SOC2, Type 1, 2), ISMS reports and ability to relate the IT General Controls, IT Application Controls, Cyber Controls to the SOC framework.
  • Develop and Maintain Vendor Risk Management /Third Party Risk Management Program including Vendor Onboarding Audit, Periodic Vendor Assessment, Maintain TPRM Database.
  • Review and implement controls and policies as per RBI and other regulatory requirements. Maintain ISMS framework, evaluate effectiveness of implemented controls and provides recommendations for improvement.
  • Facilitate Client Due - Diligence in collaboration with Business.
  • Develop and Maintain Enterprise Risk Assessment framework.
  • Perform Internal Assessment against various Standards to ensure the established policies are being followed and prepare internal reports.
  • Contract review and providing responses to client Request for Proposal (RFP)

Skills

  • Good Understanding of Technology Risk Assessment Frameworks and Application risk Assessment.
  • Good Understanding and hands on experience on PCI DSS Standard and various PCI compliance is must.
  • Experience of working in the Banking or Payment sector is preferred.
  • Hands-on experience with various Audits and Standards Such as ISMS, SSAE 18, ISO 27001,ISO 31000, ISO 22301, CSA Star, NIST Risk framework, PCI DSS, PCI 3DS, PCI PA-DSS/SSF, PCI S3 etc.
  • Good to have Information Security Certifications like CISA, CISM, CISSP etc.
  • Experience of Vendor Risk Assessment and responding to client Request for Proposal(RFP).Excellent written and oral communication and penchant for technical documentation

Experience and Qualifications

  • 2 - 5 years of experience in Information Security and Compliance in medium tolarge-sized companies.
  • Bachelor of Technology (BE/B.Tech),M.Tech or ME in Computer Science, MCA or equivalent.

Equal opportunity

  • Zeta is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We encourage applicants from all backgrounds, cultures, and communities to apply and believe that a diverse workforce is key to our success


The Company
HQ: San Francisco, California
1,834 Employees
On-site Workplace
Year Founded: 2015

What We Do

Founded in 2015, Zeta is a provider of next-gen credit card processing platform. Zeta’s cloud-native and fully API-enabled stack offers a comprehensive range of capabilities, including processing, issuing, lending, core banking, fraud detection, and loyalty programs. With a strong focus on technology, Zeta has over 1700+ employees and contractors, with more than 70% dedicated to technology roles. Operating across the US, UK, Middle East, and Asia, Zeta has served a global customer base of 35+ clients who have issued over 15 million cards on Zeta's platform to date. Backed by prominent investors such as Softbank Vision Fund 2 and Mastercard, Zeta has raised $280 million, at a valuation of $1.5 billion.

Similar Jobs

Capco Logo Capco

Advanced Data Analytics - Reg Compliance & Doc Specialist

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Bengaluru, Karnataka, IND
6000 Employees

Novo Logo Novo

Compliance & TPRM- Lead

Fintech • Financial Services
Bangalore, Bengaluru, Karnataka, IND
315 Employees

Unity Logo Unity

IT SOX Compliance Lead

Artificial Intelligence • Gaming • Machine Learning • Software • Virtual Reality • Design • Metaverse
Bengaluru, Karnataka, IND
5500 Employees

HashiCorp Logo HashiCorp

Sr. Compliance Specialist

Cloud • Information Technology • Security • Software
Bengaluru, Karnataka, IND
1200 Employees

Similar Companies Hiring

MassMutual India Thumbnail
Insurance • Information Technology • Fintech • Financial Services • Big Data
Hyderabad, Telangana
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
RunPod Thumbnail
Software • Infrastructure as a Service (IaaS) • Cloud • Artificial Intelligence
Charlotte, North Carolina
53 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account