Information Security Specialist

Company Name: Peko Technologies Private Limited

Designation: Information Security Specialist

Location: Remote, India (India & UAE Responsibilities)

Employment Type: Full-Time

Experience: 4–7 Years

About

Peko is an all-in-one platform purpose-built for small and medium-sized businesses (SMBs) to seamlessly manage payments, expenses, travel, insurance, and multi-channel operations.

We empower businesses by consolidating complex payment and expense workflows into a unified, intuitive platform—enabling them to focus on growth, not administration.

At Peko, we are building the financial infrastructure that India's SMBs deserve.

Role Overview

We are looking for a proactive and detail-oriented Information Security Specialist to join our growing team.

In this role, you will own and evolve Peko's information security, data protection, and regulatory compliance frameworks across our India and UAE operations. You will design and implement security controls, monitor organisational risk, lead incident response efforts, and be a trusted partner to our technology and compliance teams.

This is a remote-first role based in India, with responsibilities spanning both India and the UAE. The role requires periodic travel to the UAE as per business and operational requirements, reporting to the Compliance or Technology leadership.

Key Responsibilities

• Develop, implement, and maintain the enterprise information security programme in alignment with ISO 27001, SOC 2, PCI DSS, GDPR, IT Act, RBI guidelines, UAE IA regulations, and other applicable standards across India and UAE operations.
• Plan and conduct regular risk assessments, vulnerability scans, and penetration tests across both India and UAE environments; document findings and drive timely remediation.
• Lead the incident response lifecycle—from detection and investigation through root-cause analysis, corrective action, and post-incident review—covering all geographies.
• Define and enforce security controls across access management, encryption, endpoint protection, and cloud infrastructure for both India and UAE deployments.
• Manage third-party and vendor security assessments across India and the UAE, ensuring ongoing compliance and contractual obligations are met.
• Design and deliver information security awareness programmes and data-privacy training for all employees across both regions.
• Collaborate with engineering, product, and compliance teams to embed security-by-design principles across all services and initiatives.
• Prepare clear and actionable security reports, KPIs, and compliance dashboards for senior leadership and board-level stakeholders.
• Continuously monitor the evolving regulatory landscape in India and the UAE and proactively adapt the organisation's security posture accordingly.
• Travel to the UAE periodically as required by business needs, including for audits, compliance reviews, stakeholder meetings, and on-ground security assessments.

Required Qualifications and Experience

• Bachelor's or Master's degree in Computer Science, Information Security, or a closely related field.
• 4–7 years of progressive experience in information security, ideally within fintech, BFSI, or a regulated technology environment.
• Demonstrable working knowledge of ISO 27001, NIST, PCI DSS, SOC 2, GDPR, the IT Act, RBI cybersecurity guidelines, and UAE regulatory frameworks (e.g., UAE IA Regulations, NESA) is a strong advantage.
• Hands-on experience with SIEM, DLP, cloud security tools (AWS/GCP/Azure), and network security platforms.
• One or more of the following certifications are strongly preferred:
• CISSP
• CISM
• CISA
• ISO 27001 Lead Implementer / Lead Auditor
• CEH
• Excellent analytical, communication, and stakeholder management skills, with the ability to translate complex technical risks into business-relevant insights.

Key Skills and Attributes

• Risk-based and analytical mindset—you see security through a business lens, not just a technical one.
• Strong ethical judgment and discretion when handling sensitive data and security incidents.
• Collaborative working style with the ability to influence across engineering, product, legal, and compliance functions.
• Proactive, self-motivated, and comfortable navigating ambiguity in a fast-moving fintech environment.
• Adaptability and eagerness to keep pace with emerging threats, regulatory changes, and industry best practices.

Why Join Peko?

Join a fast-growing fintech building the next generation of financial infrastructure for SMBs across India and the UAE. Work alongside talented teams, contribute to a security-first culture, and play a key role in strengthening the organisation's information security and compliance landscape.

How to Apply

Interested candidates are invited to submit their updated CV on the below given email.

Email:

You may also apply directly through this LinkedIn job posting.