CISO India bei Unlimit

Responsible for ensuring that the Company’s products and platforms are designed, developed, and operated securely through modern automation and AI-enhanced practices. This role provides technical leadership for application and product security initiatives, drives security-by-design practices, and works closely with product development teams to protect customer data, financial transactions, and intellectual property. The role ensures compliance with applicable security standards, while enabling innovation and business agility.

What You'll Be Doing:

Conduct architecture reviews, threat modeling, and security assessments for business systems leveraging AI-driven analysis where applicable.

Drive root cause analysis and post-incident reviews to strengthen resilience.

Contribute to the development and enforcement of corporate security policies, standards, and procedures.

Lead the design and implementation of security controls in product development and architecture following everything-as-code principles.

Perform threat modeling, secure design reviews, and code-level security assessments for fintech applications.

Drive the integration of application security testing (SAST, DAST, IAST, SCA) into CI/CD pipelines with AI-powered triage and prioritization.

Define and enforce secure coding practices, frameworks, and guidelines through codified policies and secure-by-default templates.

Embed security controls and tooling into DevOps pipelines to enable continuous security validation through infrastructure-as-code and policy-as-code approaches.

Champion “shift-left” practices ensuring vulnerabilities are identified and remediated early.

Develop automated solutions for vulnerability detection, dependency management, and compliance monitoring utilizing AI agents and modern automation frameworks.

Oversee vulnerability management, penetration testing, and bug bounty/VDP programs.

Provide input into security risk assessments for new features, integrations, and third-party components.

Act as a subject matter expert for product security, advising engineering and product teams.

Lead and mentor security engineers and developers in secure development practices.

Collaborate with IT, Infrastructure Security, and Risk teams to ensure end-to-end security.

Represent Product Security in regulatory audits, customer security reviews, and executive briefings.

Qualifications You Bring:

Bachelor’s or Master’s degree in Computer Science, Information Security, Software Engineering, or a related discipline.

Certifications (preferred): CISSP, CCSP, CSSLP, or equivalent. Offensive security or application-focused certifications (e.g., OSWE, OSCP, GWAPT, GIAC GWEB).

Minimum 7 years of experience in cybersecurity or software security, with at least 3 years in a senior or lead product/application security role.

Fluency in English.

Jetzt bewerben