Info security - TPM-Paytm Money

We are seeking a highly organized and technically savvy Information Security Technical

Program Manager (TPM) to drive cross-functional security programs, ensuring alignment

between engineering, compliance, product, and business teams. The Infosec TPM will play a

key role in the planning, execution, and delivery of critical security initiatives, with a focus on

cloud security, secure SDLC practices, risk management, audit readiness, compliance,

security awareness and policy/process governance.

This role requires strong project/program management skills, a deep understanding of security

best practices, and the ability to communicate effectively with both technical and non-technical

stakeholders.

1. Lead and coordinate the delivery of cross-functional security programs, including cloud

security initiatives, vulnerability management, incident response planning, and

compliance efforts.

2. Partner with engineering, DevOps, IT, compliance, and legal teams to define project

scope, objectives, and success metrics.

3. Drive the execution of multiple, concurrent security initiatives - ensuring deadlines,

quality, and stakeholder alignment.

4. ​​Facilitate cross-functional meetings and ensure alignment on security priorities.

5. Develop project plans, timelines, and deliverables for awareness campaigns, policy

rollouts, compliance efforts and reporting for visibility into program health and status.

6. Track progress, manage dependencies, and ensure timely delivery of milestones.

7. Assist in the development and rollout of security frameworks, policies, and standards

(e.g., ISO 27001, NIST, CIS & DPDPA).

8. Facilitate risk assessments and threat modeling sessions to identify gaps and mitigation

strategies.

9. Manage third-party security audits and work with stakeholders to remediate findings.

10. Build detailed project plans, RAID logs, and status reports, and prepare and present

progress decks to leadership and stakeholders.

11. Prepare executive decks, dashboards, and periodic reports on program status, risks,

and track security metrics and KPIs.

12. Document meeting minutes, action items, and follow-ups with clear accountability.

13. Serve as a communication bridge between technical teams and business leadership on

security initiatives.

Qualifications and Experience:

1. 5-8 years of experience in technical program or project management, with at least 3

years in cybersecurity or information security.

2. Strong understanding of cloud platforms (AWS, Azure, GCP) and security in cloud-native

architectures.

3. Experience with compliance frameworks such as ISO 27001, NIST, DPDPA.

4. Proven track record of delivering complex, cross-functional programs in a fast-paced

environment.

5. Proficient with project management & ticketing tools (e.g., Jira) and documentation

platforms (e.g., Confluence).

6. Bachelor’s degree in Computer Science, Information Security, Engineering, or a related

field and relevant project management certifications like PMP, Prince 2 are preferred.