About PhonePe Group:
PhonePe is India’s leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and Lending) as well as adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store which is India's first localized App Store. The PhonePe Group is a portfolio of businesses aligned with the company's vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services.
Culture
At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one. Being enthusiastic about tech is a big part of being at PhonePe. If you like building technology that impacts millions, ideating with some of the best minds in the country and executing on your dreams with purpose and speed, join us!
Roles and Responsibilities: -
- Manage Third party risk assessment for all Third Parties, review the risk categorisation on a regular basis and evaluate the security controls and ensure continuous evaluation of Third party.
- Evaluate the review results of TPRM consultants and ascertain the adequacy of control testing.
- Evaluation of Third party on the security posture before onboarding & an ongoing Basis.
- Risk assessments for IT assets and processes periodically.
- Outsourcing Assessments project management.
- Provide guidance to the stakeholders with respect to the contractual obligations from Outsourcing contracts and Review of Third-party Contracts.
- Evaluation of Third-Parties tools used by SRE /Engg. teams.
- Interpret IT control requirements from regulatory guidelines and circulars and prepare a detailed framework for implementation and Advisory on implementation of information security controls from Outsourcing Perspective.
- Ensure that IT regulatory requirements are tracked and continuously monitored.
Plan Third-party audit calendar - Fore fronting Outsourcing & TPRM Function in internal & External audits and act as POC for all escalations.
- Support management to provide audit finding responses, implementation of controls as per audit recommendations etc and ensure all audit observations are taken to closure
Role Requirements: -
- 7 to 9 years of relevant work experience, BE / relevant experience in Group 4 consultancies, or likes of Group 4 . CISA / CISSP preferred.
- Has high ethical standards and is able to work diligently to complete your duties.
- Has an analytical mind, able to “see” the complexities of procedures and regulations.
- Demonstrate the ability to plan and execute projects with minimal management support.
PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles)
- Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance
- Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System
- Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program
- Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy
- Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment
- Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy
Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe on our blog.
