Back to jobs
Fidelity International

Technical Consultant - Information Security

Gurgaon OfficePosted Today
Full-timeonsite

Job Description

About the Opportunity

Job Type: Permanent

Application Deadline: 05 July 2026

Job Description

                                                                                                                     

Title                 Technical Consultant - Information Security

Department      Global Cyber & Information Security

Location          India - Gurgaon

Reports To       Assoicate Director - Cyber and Information Security Risk

Level                Grade  5

 

 

We’re proud to have been helping our clients build better financial futures for over 50 years. How have we achieved this? By working together - and supporting each other - all over the world. So, join our team and feel like you’re part of something bigger.

 

About your team

The Information Security function at Fidelity International is part of the Global Cyber & Information Security (GCIS) group, reporting to the Head of Global Information Security. The function includes the Information Security Office, Information Security Management, and External Security Review. The Information Security function works closely with business and technology stakeholders to balance strategic objectives with risk management, supporting the effective management of cyber risk in line with the firm’s risk appetite.

 

About your role
The Information Security role is responsible for governing, assessing, and advancing information security maturity across the organization, with a with a focus on emerging and evolving technologies such as cloud‑native platforms, automation, advanced analytics, AI enabled systems, and modern digital architectures.

 

The role ensures that innovative technologies are adopted securely, responsibly, and in alignment with recognized security frameworks, regulatory expectations, and the organization’s risk appetite. Provide senior representation for the Information Security function in governance forums, decision‑making, and key stakeholder engagements where require
A key accountability is the design and execution of security maturity assessments, driving continuous improvement across people, process, and technology, including the use of automation and analytics to improve efficiency and insight.

 

 

Key Responsiblities:

 

  • Develop and maintain security policies, standards, and control frameworks addressing emerging technologies. Ensure alignment with ISO/IEC 27001, ISO 27002, NIST, and applicable regulatory expectations.

  • Independently plan, manage, and deliver defined information security workstreams, taking accountability for outcomes and timelines with minimal supervision.

  • Establish and maintain security governance models for emerging technologies, including AI/ML, generative AI, automation platforms, and advanced data technologies.

  • Define security principles, guardrails, and standards for responsible and secure adoption of emerging technologies.

  • Design, execute, and maintain enterprise security maturity assessment models aligned with frameworks such as ISO 27001, NIST CSF, or equivalent. Benchmark organisational maturity against industry peers and standards.

  • Translate abstract control requirements into practical, technology-aligned guidance to support Goverance as a Service (GAAS) and Policy as a Code (PAAC) enablement.

  • Define meaningful security maturity metrics, KRIs, and KPIs, to support enterprise‑level cyber measurement and reporting.

  • Drive continuous improvement of security assurance methods, tooling, and assessment techniques. Identify opportunities to leverage automation, analytics, and AI‑enabled capabilities to improve efficiency, consistency, and scalability of security assessments, monitoring, and reporting.

 

 

About you

You are an experienced Information Security professional is responsible for strategic ownership, governance, and maturity advancement of the Information Security Management System (ISMS) in alignment with ISO/IEC 27001. This role provides enterprise-wide leadership for information security risk, compliance, and assurance, ensuring alignment with business objectives, regulatory expectations, and industry best practices.

 You are comfortable operating with a high degree of autonomy, able to prioritise competing demands, influence senior stakeholders, and take ownership of complex deliverables end‑to‑end.

 

Required skills and experience:

 

  • Experience in policy development and control implementation and understanding of information security risk management and regulatory frameworks.

  • Strong experience in information security governance, risk management, or security assurance with understanding of ISO 27001, NIST CSF, or similar frameworks.

  • Familiarity with cloud, application, and infrastructure security concepts.

  • Hands-on experience designing or executing security maturity or capability assessments.

  • Working knowledge of emerging technology landscapes, including AI‑enabled systems, automation, data platforms, and modern technology stacks.

  • Experience assessing security risks in emerging technology, AI, analytics, and cloud-native environments.

  • Experienced with regulatory, audit, or supervisory interactions related to cyber and information security risk.

  • Strong documentation, communication, and stakeholder management skills with the ability to translate security requirements into practical outcomes

  • Preferred to have a Bachelor’s degree in Information Security, Computer Science, Engineering with 8+ years of experience.

  • Preferred certifications - ISO 27001 Lead Implementer or Lead Auditor, CISSP, CISM, CRISC

  • AI or data governance certifications (desirable)

 

 

Feel rewarded

For starters, we’ll offer you a comprehensive benefits package. We’ll value your wellbeing and support your development. And we’ll be as flexible as we can about where and when you work – finding a balance that works for all of us. It’s all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.

 

For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.

Technical Consultant - Information Security at Fidelity International | Renata