Airtel Payments Bank

Manager / Senior Manager - Cyber Security Assurance

Airtel Payments Bank

Gurugram, Haryana, India · Full Time

Be the first to apply

Experience
8–10 yrs
Salary
INR 800,000 – INR 1,800,000 / year
Openings
1
Posted
4 hours ago
Work mode
In office
Education
Any graduate
Eligibility
Any graduate can apply for this cybersecurity assurance role.
Resume
Required to apply

Where you'll work

Job description

About the Company

Airtel Payments Bank is the first organisation to secure the final RBI licence for starting a payments bank. It plans to use Bharti Airtel’s extensive distribution footprint of 1.5 million outlets, reaching 87% of the country and covering more than 400,000 villages and 5,000 census towns. Its goal is to advance financial inclusion by offering banking that is simpler, more accessible, and suited to how people want to manage money.

Role Overview

This position focuses on strengthening the organisation’s cyber security assurance function by building posture measurement, validating control effectiveness, supporting audit and regulatory reviews, and converting technical findings into clear risk insights for leadership.

Cyber Security Posture Measurement & KPI Framework

You will define, maintain, and continuously improve the KPI framework used to track cyber security posture across major security areas such as network security, endpoint security, identity and access management, cloud security, SOC and detection capability, data security and encryption, as well as third-party and access controls.

The metrics should reflect how well controls reduce risk and improve security outcomes, rather than simply measuring tool deployment or activity levels. These KPIs will need periodic recalibration so they stay aligned with risk appetite, changing threats, and regulatory expectations.

Independent Control Testing & Validation

You will own the enterprise-wide cybersecurity control testing programme. This includes planning and carrying out risk-based testing across all security tools and domains, including on-premise, cloud, and hybrid environments.

The role requires validating whether controls are properly designed, whether they operate effectively in practice, and whether there are any gaps, weaknesses, or wider systemic issues. Testing results must be repeatable, auditable, and strong enough to stand up to scrutiny.

Cyber Risk & Scorecard Integration

Findings from control testing, KPI trends, and posture measurements must be fed into the enterprise cyber risk scorecard. You will translate technical results into language that senior stakeholders can understand and use to identify high-risk areas, weakening control trends, and concentrations of risk across domains.

You will also support decisions on risk acceptance and treatment by presenting factual, evidence-based inputs.

Reporting & Executive Communication

The role involves preparing regular cyber posture reports for the CISO, senior management, and risk and audit committees where needed. These reports should clearly summarise overall security posture, major weaknesses and exposures, and the status of remediation and maturity improvements.

The expectation is to create reporting that supports decision-making, not just awareness.

Audit & Regulatory Support

You will be the main infosec contact for internal audits, external audits, and regulatory assessments related to control effectiveness. The work includes coordinating evidence collection for tested controls and confirming that audit findings are remediated before they are formally closed.

It is important to keep audit observations, control testing results, and risk scorecard reporting aligned.

Cross-Functional Collaboration

You will work closely with SOC teams, network security, endpoint security, cloud security, GRC, and risk management teams. While maintaining independence from day-to-day operational execution, you must collaborate effectively and challenge teams constructively using data and evidence.

Process & Capability Maturity

The role requires continuous improvement of assurance and testing methods by using recognised frameworks and standards such as NIST, CSF, ISO 27001/27002, and COBIT. Where possible, you will also drive automation in KPI data collection, control testing evidence, reporting, and dashboards.

If applicable, you may also mentor team members involved in assurance and testing activities.

Required Experience & Qualifications

This position calls for 8 to 10 years of experience in cybersecurity, with strong exposure to cyber security assurance, control testing, and risk and posture measurement. Experience in regulated or audit-heavy environments is preferred.

Preferred certifications include CCSP and CCSK.

Application Details

Candidates are expected to share their CV along with total experience, current CTC, expected CTC, notice period, and current location.

Eligibility

Any graduate can apply.

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files

🤖
Online · instant AI help