INFOPARK

Senior Security Consultant - PCI QSA

This role will be responsible for supporting the organization's security initiatives, ensuring compliance with industry standards, and maintaining a secure, risk-aware environment. The role will work closely with clients, understand their security and compliance requirements, plan engagements, and ensure high-quality delivery of services. The role will work closely with cross-functional teams to ensure successful delivery of client projects. The role demands technical expertise, deep regulatory knowledge, client management capabilities. Focus will be on delivering value through risk framework development, vendor risk assessments, compliance training, and tailored client advisory.

Key Responsibilities, Deliverables / Outcomes
1. Practice Delivery
• Conduct PCI DSS assessments for clients in line with PCI Security Standards Council guidelines.
• Provide consulting to implement and manage Information Security Management Systems (ISMS).
• Provide consulting to implement and maintenance of ISO 27001:2022 and/or NIST CSF standards within the organization.
• Perform Gap Assessment and threat modeling. Conduct risk assessment and create the Risk Treatment Plans (RTPs).
• Conduct in-depth analysis of complex security issues, identifying root causes and developing practical, data-driven solutions.
• Define and assess the Client's risk appetite and tolerance levels and develop and monitor Key Risk Indicators (KRIs) for Clients.
• Provide expert guidance to clients on remediation plans and achieving/maintaining compliance.
• Develop and document information security policies, processes, standards, and procedures in collaboration with other stakeholders.
• Identify and interpret legal, regulatory, and statutory information security compliance requirements relevant to Client operations.
• Conduct internal audits, assess security controls, and manage remediation plans.
• Deliver tailored, value-driven solutions while managing expectations, timelines, and budgets effectively.
• Conduct final PCI QSA audits and Develop Reports on Compliance (ROC) and Attestation of Compliance (AOC).
• Act as the liaison for external compliance assessments and audits, ensuring thorough preparation, evidence gathering, and successful audit outcomes.

2. Client Engagement
• Ensure a Client-centric approach by actively managing expectations, delivering value, and exceeding stakeholder requirements.
• Communicate risk assessments and mitigation plans to senior management within Client organizations.
• Deliver presentations and briefings to senior management and stakeholders, communicating complex security concepts in an understandable manner.
• Ensure effective communication of these policies and procedures across the Client's organization and ensure these policies are integrated into business operations.
• Engage in Client Meetings & Interactions to identity new prospects, relationship building & gathering market intelligence and feedback on services provided.
3. Learning & Initiatives
• Independently manage information security projects, ensuring adherence to deadlines and delivery goals.
• Take ownership of tasks and consistently meet deadlines, demonstrating accountability in managing security initiatives.
• Efficiently allocate and manage project resources and ensure timely and concise Project status updates to all stakeholders.
• Work as part of a collaborative team, fostering a culture of cooperation, open communication, and shared success.
• Stay up-to-date with PCI SSC updates, security threats, and regulatory changes.
• Deliver training and awareness sessions on compliance and security best practices.
• Maintain all QSA certification requirements as per PCI SSC guidelines.
• Identify and implement means to reduce and streamline efforts using technology.
4. Operations Management
• Track performance using Balanced Scorecard that tracks key metrics like client satisfaction (e.g., NPS), delivery timelines, and learning & growth.
• Timely adherence to PMS initiatives like Timesheet, Bi-Weekly reviews etc

Key Skills
• PCI QSA
• In-depth knowledge of ISO 27001 standard
• Extensive knowledge on application of data classification framework/concepts, Identity and Access Management Concepts, Secure Software Development Lifecycle concepts, network defense.
• Working knowledge about cloud security concepts and cloud platforms
• Working Understanding of OSI communication layers and network communication protocols

Key Competencies
• Analysis Skills
• Customer Focus
• Communications- Oral & written
• Adaptability to Change
• Problem Solving Skills

Sr. SEO Analyst

Job Summary

The Senior SEO Analyst leads and executes advanced SEO strategies to enhance organic visibility, keyword rankings, and lead generation across multiple domains and regions. This role includes planning, implementing, and monitoring on-page, off-page, and technical SEO initiatives aligned with business goals. Acting as an SEO Subject Matter Expert (SME), the Senior SEO Analyst mentors junior team members, collaborates cross-functionally, and drives measurable growth through data-driven insights and technical excellence.

Key Responsibilities & Deliverables / Outcomes

SEO Strategy & Execution
Develop and execute SEO strategies for corporate and product websites.
Outcome: Quarterly SEO plan aligned to business OKRs.

Keyword Research & Mapping
Conduct in-depth keyword research and map keywords to pages using pillar-cluster architecture.
Outcome: Keyword mapping report and content briefs.

On-Page Optimization
Optimize meta tags, headings, internal linking, schema markup, and content for search and LLM visibility.
Outcome: 100% of pages optimized for focus keywords.

Off-Page SEO & Link Building
Build high-quality backlinks, manage outreach campaigns, and evaluate domain/link quality.
Outcome: Monthly backlink acquisition and quality report.

Technical SEO
Conduct audits on site speed, crawl health, indexation, Core Web Vitals, and structured data.
Implement required fixes in collaboration with developers.
Outcome: Monthly technical SEO audit report with implemented improvements.

Content Collaboration
Work with content teams to guide SEO-driven content creation and optimization.
Outcome: SEO-optimized content calendar.

Analytics & Reporting
Monitor and analyse performance via GA4, GSC, Ahrefs, and Tag Manager.
Track KPIs including traffic, CTR, rankings, and conversions.
Outcome: Monthly SEO performance dashboard.

Team Leadership & Mentoring
Supervise the work of SEO Analysts, provide feedback, and support skill development.
Outcome: Improved team productivity and higher-quality output.

Cross-Functional Collaboration
Partner with design, development, and product teams to ensure SEO best practices during website updates or new releases.
Outcome: SEO integrity maintained in every deployment.

Key Skills

Advanced knowledge of SEO tools: Ahrefs, Google Search Console, GA4, Tag Manager.
Strong understanding of technical SEO, site architecture, and Core Web Vitals.
Expertise in keyword research, content optimization, and schema implementation.
Familiarity with generative AI search optimization (ChatGPT, Gemini, SGE readiness).
Experience with WordPress, Elementor, and GoHighLevel SEO processes.
Working knowledge of HTML, CSS, and basic JavaScript for debugging.
Strong analytical, communication, and project management skills.

Key Competencies

Strategic Thinking: Aligns SEO initiatives with business and lead-generation targets.
Analytical Capability: Translates data into actionable optimization opportunities.
Execution Excellence: Consistently delivers measurable improvements under deadlines.
Leadership & Mentoring: Guides junior analysts to improve analytical and creative skills.
Collaboration: Works effectively across marketing, tech, and content functions.
Innovation & Curiosity: Leverages AI-driven SEO and explores evolving search trends.
Attention to Detail: Ensures complete, technically accurate optimization.
Ownership & Accountability: Takes responsibility for organic growth KPIs and performance metrics.

AD - Risk & Compliance - Ind

Job Summary
This role will be responsible for end-to-end ownership of all Risk & Compliance engagements for clients. This is a leadership role that will report to the AVP – Digital Assurance, and work closely with global delivery leaders, senior practice heads, and cross-functional teams such as Sales, Pre-Sales, and Account Management.
The role will lead a dedicated delivery team and will be instrumental in maintaining and improving a robust, scalable delivery framework aligned with global standards including efficient processes, ensuring compliance with relevant regulatory frameworks, maintaining high service quality, and proactively identifying opportunities to improve delivery effectiveness and margins. The role will shape strategy and lead both advisory and implementation engagements for clients.
Beyond operational excellence, the role demands strong client engagement capabilities. The role will act as a senior representative in front of clients, responsible not only for delivery satisfaction but also for building long-term relationships, gathering market intelligence, and identifying upsell/cross-sell opportunities during and post-delivery.
This is a high-impact role requiring a blend of technical expertise in cybersecurity frameworks, strong leadership and operational management skills, and the ability to deliver business outcomes in a fast-evolving and competitive landscape. The ideal candidate will be a certified ISO Lead Auditor with a proven track record in managing and scaling delivery teams in the cybersecurity domain.

Key Responsibilities, Deliverables / Outcomes
1. Revenue
• Identify market needs and design service offerings to address them.
• Help in business development efforts— by providing timely efforts for proposals, help in RFP responses, pre sales engagement with potential clients.
• Identify and influence upsell opportunities during delivery lifecycle through strong client relationships.
2. Client Engagement & Advisory Delivery
• Serve as a senior point of contact for India clients to review engagement performance, gather feedback, and understand evolving needs.
• Lead monthly/quarterly delivery reviews and maintain strong working relationships with client stakeholders.
• Actively seek and document client feedback for internal process improvements and innovation.
• Deliver tailored, value-driven solutions while managing expectations, timelines, and budgets effectively.
• Engage in Client Meetings & Interactions to identity New prospects, relationship building & gathering market intelligence and feedback on services provided.
• By demonstrating service excellence and delivery effectiveness, support renewal discussions.
3. Practice Delivery
• Own delivery governance and accountability for all Risk & Compliance engagements.
• Establish delivery processes in alignment with global delivery standards.
• Document Delivery frameworks, documents, tools, and methodologies to enhance consistency and excellence.
• Track delivery metrics: on-time completion, CSAT/NPS, quality, and effort variances.
• Ensure adoption and compliance with relevant cybersecurity standards and frameworks
• Identify and implement means to reduce and streamline efforts using technology.
• Use insights to drive continuous service improvement and connect performance to strategic outcomes
4. Leadership & Capability Development
• Build, mentor, and manage the Delivery Team
• Define the team’s short- and long-term objectives aligned with organization’s growth strategy.
• Ensure knowledge-sharing, training alignment, and unified service methodology.
• Innovate service offerings and develop intellectual capital—thought leadership content, whitepaper, blogs, case studies, best practices, and methodologies.
• Ensuring skill enhancement within the function by adding more certifications among the team members.
5. Operations Management
• Implement and manage delivery dashboards, MIS, and reporting tools to track performance and resource utilization.
• Optimize resource allocation across engagements to improve delivery efficiency and gross margins.
• Performance tracking using Balanced Scorecard that tracks key metrics like new business wins, client satisfaction (e.g., NPS), delivery timelines, and team learning & growth.
• Timely adherence to PMS initiatives like Timesheet, Bi-Weekly reviews etc
6. Stakeholder Management & Market Expansion
• Build trusted relationships with client leadership and internal executive stakeholders.
• Partner with internal functions (e.g., sales, marketing) to drive cross-selling and define new markets or clients.

Key Skills
• Cybersecurity & Compliance Expertise – Deep understanding of standards and frameworks such as ISO 27001, NIST, and DPDPA. CISSP Certification is Mandatory. CISM or CISAB Certification is mandatory.
• Project & Program Management – Proven ability to lead complex cybersecurity projects with multiple stakeholders and high service-level expectations.
• Delivery Governance & Process Design – Experience in building delivery frameworks, SOPs, and quality assurance mechanisms tailored to regional markets.
• Team Building & Capability Development – Skilled in hiring, mentoring, and driving certification and career growth for delivery professionals.
• Conceptual Knowledge - Working knowledge data classification frameworks & concepts, cloud security concepts and cloud platforms, Network Defense concepts & tools

Key Competencies
• Judgment/Decision Making
• Organization/Planning
• Assertiveness
• Motivational Ability
• Accountability

Business Head – India

Job Summary
The VP – Business Head, India is a high-impact, leadership role responsible for establishing and scaling the cybersecurity consulting business in India. This role will lead P&L for the region, owning financial targets, delivery excellence, and operational infrastructure. This role will craft the India-market strategy, cultivate key partnerships, and develop a high-performance team of sales and delivery professionals—balancing aggressive growth (₹15 cr in 12–15 months) with disciplined margin management (~15% net). Reporting directly to the Global CEO, this role serves as the primary architect of India’s business expansion and must possess the ability to thrive amidst ambiguity, build structures from the ground up, and integrate with global governance and shared functions. This role is tasked with the mission of being rated as one of the most trusted cybersecurity consulting and services provider. The role will serve as the company's strategic face in the region—establishing the market presence, forging strong relationships with regulators, clients, and channel partners. The role will require to work closely with clients, vendors and internal stakeholders and ensure consistent alignment with the overall organizational business objectives.

Key Responsibilities, Deliverables / Outcomes
1. Revenue & Strategic Growth
• Design and execute a comprehensive India-market go-to-market strategy targeting key domains: payment security, risk & compliance, healthcare standards, and data privacy.
• Build a diverse and scalable sales pipeline through both direct engagements via sales team and channel partnerships.
• Acquire marquee clients.
• Achieve ₹15 cr in annualized turnover while delivering and sustaining >=15% net margin through strategic pricing, cost control, and operational efficiencies.
• Develop and manage budgets for business development, marketing, and client engagement; ensure ROI through performance tracking and real-time adjustments.
• Lead proposal development, pricing, and negotiation efforts to reach the revenue target
• Identify market needs and recommend service offerings to address them.
• Continually assess revenue performance and refine strategies to exceed targets.
• Identifying upselling opportunities in existing clients.
2. Leadership & Stakeholder Engagement
• Coach, build, mentor, and lead a high-quality sales & delivery team
• Ensure seamless integration of the existing team into the new structure.
• Work closely with Global CEO and Practice Heads ensuring seamless delivery alignment and cross-functional integration.
• Collaborate with shared corporate teams (HR, Finance, Marketing) for recruitment, performance management, brand building, and operational support.
• Represent the firm in strategic forums and cultivate relationships with key regulatory and enterprise stakeholders
• Embed trust and credibility into company identity through high-level client relationship management.
• Engage in Client Meetings & Interactions to identity new prospects, relationship building, gathering market intelligence and feedback on services provided.
3. Delivery Oversight & Quality Assurance
• Establish a dedicated India-based delivery team with end-to-end responsibility—scoping, planning, execution, quality assurance, and post-delivery satisfaction.
• Define and monitor delivery KPIs, SLAs, client feedback loops, and ensure compliance with quality and security standards aligned to global benchmarks.
• Leverage practice heads for technical support and to replicate or co-create delivery methodologies, best practices, and solution frameworks.
• Use insights to drive continuous service improvement and connect performance to strategic outcomes
4. Operations & Administration
• Oversee administrative budgets including office, HR services, local legal compliance, and tools for delivery enablement.
• Ensure robust governance, financial controls, and reporting systems in sync with the global operating model.
• Manage the operational budget covering regulatory compliance, market-entry, travel, and event participation, local GTM
• Performance tracking using Balanced Scorecard that tracks key metrics like new business wins, client satisfaction (e.g., NPS), delivery timelines, and team learning & growth.
• Timely adherence to PMS initiatives like Timesheet, Bi-Weekly reviews etc
5. Partnerships, Alliances & Ecosystem Development
• Identify, negotiate, and formalize strategic alliances with technology vendors, channel partners, domain-specific consultants, and relevant industry associations.
• Foster thought-leadership initiatives and ecosystem presence through forums, webinars, and collaborations in cybersecurity, privacy, and healthcare domains.
6. Regulatory & Ecosystem Integration
• Establish and nurture strong partnerships with regulatory bodies including CERT-IN, NABCB etc. ensuring alignment with national cybersecurity policies.
• Monitor regulatory developments and ensure the firm’s compliance posture evolves proactively.
• Ensure that ValueMentor is suitably present and positioned in Networking Bodies and Public Private Partnership forums

Key Skills
• Strategic Business Development
• Cybersecurity Knowledge
• Financial & P&L Acumen
• In-depth knowledge of the Market
• Knowledge on regional information security standards and regulations.

Key Competencies
• Strategic Skills /Decision Making
• Organization/Planning
• Vision
• Motivational Ability
• Accountability

GRC Analyst

Job Summary
Plan and execute audits of Information Security Management Systems (ISMS) based on ISO 27001 standards.
Develop audit schedules, conduct opening and closing meetings, and ensure adherence to audit timelines
Prepare audit plans, checklists, and audit reports detailing findings, non-conformities, and recommendations.

Key Responsibilities, Deliverables / Outcomes
Plan and deliver on technology (IT/IS) audits with full involvement in planning, fieldwork & reporting.
Support IT/IS assurance & advisory reviews to address key enterprise technology risks including assessing the adequacy, design and operating effectiveness of technology and internal controls.
Perform Information Security related assessments to cover domains like User Access management, Network, OS & Application Security, Encryption, Backup Management, Disaster Recovery, Training & Awareness, etc.

Key Skills
Graduate in Science/Engineering
ISO 27001:2022 Lead Auditor/Implementor
CISA/CISM/CISSP preferred

Key Competencies
Minimum 2 to 3 years of experience in information/cyber security domain
Strong background in network security and information & cloud security.
Good Knowledge of ISO 27001 standard and documentation
Good knowledge of cyber security frameworks such as RBI CSF, NIST CSF, etc.
Good presentation skills
Sound knowledge of IT Security and Infrastructure audits.
Must possess basic knowledge of networking, different flavors of operating system, endpoint devices and security devices.
Should be a self-learner and must keep him/herself updated with latest threats and vulnerabilities researched/discovered.
knowledge of business continuity framework and standards.
Basic knowledge of different compliance standards such as PCI DSS, HIPAA, etc. in addition to ISO 27001
Good written and Verbal communication skill.

Finance Intern

Job Summary
We are looking for highly motivated Finance Executives to join our growing finance team. This is an excellent opportunity for fresh graduates with a strong academic background in finance and accounting to gain hands-on experience in real-world bookkeeping and general accounting practices. The selected candidates will primarily work on Zoho Books and will play a crucial role in maintaining accurate financial records and ensuring smooth day-to-day accounting operations. Candidates must possess strong theoretical fundamentals, attention to detail, and a willingness to learn and grow within the organization. The candidate will need to exercise integrity and confidentiality in financial reporting and compliance with statutory financial requirements.

Key Responsibilities, Deliverables / Outcomes
• Perform daily bookkeeping tasks including journal entries, expense tracking, and reconciliation.
• Issuance of Purchase orders in Zoho in compliance with the procurement guidelines of the company.
• Review vendor invoices prior to payment for appropriate documentation
• Maintain and update accounts payable and accounts receivable records.
• Assist in preparing financial statements, MIS reports, and monthly closings.
• Perform general-ledger data entry in Zoho relating to vendor, staff salaries, staff cost, staff bonus and staff benefit accruals and payments and ensure entries are posted accurately and timely.
• Monitor bank transactions and assist in bank reconciliations.
• Organize and maintain financial documentation in compliance with internal and statutory policies.
• Assist with internal audits and documentation as required.
• Collaborate with other departments to ensure financial data integrity.
• Gain proficiency in Zoho Books through provided learning materials and apply knowledge to daily tasks.
• Identify areas for automation and improvement in accounting processes.
• Reconciling & maintaining accurate and up-to-date vendor records, including contact information, payment terms, and other relevant data
• Follow up and close all petty cash imprest / advances paid to staff
• Receiving, reviewing, recording and processing employee reimbursement expenses, ensuring that all expenses are properly documented, approved according to company policies and procedures
• Maintaining positive interpersonal relationships with team members and other departments / staff by demonstrating productivity, initiative, flexibility, cooperation, and commitment to the success of Finance team

Key Skills
1. Strong academic background in finance, commerce, or accounting (B.Com, M.Com, BBA, MBA – Finance)
2. Sound understanding of accounting principles such as double-entry, accruals, and ledgers.
3. Theoretical knowledge with financial statements (P&L, Trail Balance, Balance Sheet, Cash Flow).
4. Good Excel skills, including use of formulas and spreadsheets for data analysis.
5. Analytical mindset with the ability to identify discrepancies and maintain accuracy in records.

Key Competencies
1. Attention to Detail
2. Willingness to Learn
3. Integrity & Accountability
4. Communication
5. Organization / Planning : Time Management

SOC Intern

Key responsibilities, deliverables / outcomes
• Learn to observe the various security software used by the soc, identifying, and analyzing alerts that may indicate suspicious activity.
• Under supervision, take point on investigating lower-priority alerts to determine if they are genuine threats or false positives.
• Gather additional context around security alerts, such as user information or system details, to aid in proper evaluation.
• Complete the assigned learning topics.
• Assist senior analysts in researching new threats and updating knowledge bases to improve detection capabilities.
• Documenting procedures, escalation protocols, and incident details.
• Expected to understand and strictly follow the organization's security policies and procedures.
• Assist l1 analysts in incident workflow whenever required.
• Track incident status as per standard operating procedures (sop) defined.
• Report computer security events, by established processes and procedures.
• Learn about maintaining basic security hygiene practices like password management and system hardening procedures.

Key skills
• Must be adaptable and eager to learn new tools, technologies, and security procedures.
• Must be able to prioritize tasks, manage their time effectively, and meet deadlines.
• Must be able to work effectively with others to achieve common goals.
• Analyzing complex situations and identifying the root cause of security incidents.
• Need a keen eye for detail to ensure accurate analysis and response.
• Need to communicate effectively with analysts, it teams, and management to share information and coordinate efforts.
• Communication skills – professional-level written and verbal communication.
• Need to be able to work independently on assigned tasks and take ownership of their work.
• Should demonstrate a strong work ethic and take the initiative to identify and address potential security risks.

Key competencies
1. Communication
2. Continuous learning & improvement
3. Security fundamentals
4. Analytical thinking & decision making
5. Security tool proficiency