We are Sinch. We are leading global communication Platform (cPaas) provider – the connector between the two through our messaging, voice and video solutions. By year end Sinch will be close to 4000 employees in more than 50 countries with one of our engineering hub at Noida location.
The essence of the role
Job Description – Sr Manager, InfoSec & Compliance
Experience Required: At least 10 years in Information Security / Cybersecurity
Education: B.Tech / B.E. in Computer Science, IT, Electronics or related field (Master’s or MBA a plus)
Certifications (preferred): CISSP, CISM, CISA, CCSK, CCSP, ISO 27001 LA/LI, HITRUST CCSFP
Role Overview
We are seeking an accomplished cybersecurity Sr Resource who combines deep compliance expertise with hands-on technical security skills. The role demands strong command over ISO 27001, HITRUST, HIPAA, and similar regulatory frameworks, as well as the ability to design, implement, and sustain enterprise-grade security programs. This position requires both strategic thinking and operational execution, making it ideal for professionals who thrive at the intersection of governance, risk, compliance, and technology.
Key Responsibilities
Compliance & Governance
- Own and drive compliance initiatives across ISO 27001, HITRUST, HIPAA, SOC 2, and other regulatory frameworks.
- Lead certification, surveillance, and re-certification audits; coordinate external auditors and internal stakeholders.
- Develop, implement, and continuously refine security policies, standards, and procedures aligned with business and regulatory needs.
- Integrate compliance requirements into enterprise GRC processes.
Risk Management & Security Architecture
- Conduct enterprise risk assessments, gap analyses, and business impact assessments (BIAs).
- Define security architecture principles across cloud (AWS/Azure/GCP), on-prem, and hybrid environments.
- Evaluate and implement security technologies covering IAM, DLP, SIEM/XDR, encryption, vulnerability management, and network security.
- Ensure “security by design” for new initiatives, applications, and infrastructure.
Security Operations & Incident Response
- Oversee vulnerability management, penetration testing, red/blue team simulations.
- Lead and coordinate incident response — from detection to containment, eradication, and lessons learned.
- Collaborate with SOC teams or MSSPs to ensure 24x7 monitoring, escalation, and reporting.
- Contribute to threat intelligence and continuous security posture improvement.
Data Protection & Privacy
- Ensure compliance with HIPAA, GDPR, and other data protection laws, especially around PHI and PII.
- Support Data Protection Impact Assessments (DPIAs) and privacy-by-design practices.
- Work with business units to embed strong data classification, retention, and protection processes.
Leadership & Stakeholder Engagement
- Act as the trusted cybersecurity advisor to senior executives and business leaders.
- Build cross-functional alignment with IT, DevOps, Product, Legal, and HR to integrate security into business strategy.
- Lead, mentor, and upskill security/compliance team members.
- Drive security awareness programs across the enterprise.
Required Skills & Qualifications
- MINIMUM 8+ years of professional experience in information security with progressive leadership responsibilities.
- Demonstrated success in achieving and maintaining ISO 27001, HITRUST, and HIPAA compliance at enterprise scale.
- Strong grasp of security frameworks (NIST CSF, SOC 2, PCI DSS) and risk methodologies.
- Technical knowledge across:
- Cloud security (AWS/Azure/GCP)
- Network security & firewalls
- Identity & access management
- Encryption & key management
- DLP, SIEM/XDR, vulnerability scanners, endpoint protection
- Proven experience managing incidents, audits, and client due diligence assessments.
- Excellent stakeholder management and communication skills, with the ability to influence at all levels.
- Preferred: CISSP, CISM, CISA, ISO 27001 LA/LI, CCSK, CCSP.
Basic Qualifications:
- B.E./B.Tech. or MCA degree in a related field would be desirable.
- Certifications such as CISA, and ISO27001:2013 LA/LI will be an added advantage.
- Excellent oral and written communication skills.
- Capability to deliver on tight schedules with excellent task management capabilities.
Being you at Sinch :
We're a worldwide group of people, committed to diversity. We're working to offer an increasingly inclusive workplace wherever you are. No matter who you are, you'll be able to explore new career and growth options - sharing your voice, building your path and making it happen with us.
We’re proud to be an equal opportunity employer, and all qualified applicants will be considered to join our team regardless of race, colour, religion, gender identity or expression, sexual orientation, pregnancy, disability, age, veteran status, and more.
Your life at Sinch:
Being a Sincher is all about learning and being in pursuit of new challenges. Working in the offices, at home, or in a hybrid model, that means celebrating change and the unknown, rolling up your sleeves and seeing what impact you can have on the world. The only way is up, and you’ll be reaching for the opportunities that match where you want to take your career. It’s closer than you think.
It’s time to chase the answers, chase the challenges and chase the dream.
Are you ready? Join us on our journey!