Role Purpose: The Head of Cybersecurity & Data Privacy will be responsible for establishing and leading the company’s information security and data protection strategy, governance, and operations. This role ensures compliance with IRDAI guidelines, IT Act provisions, and emerging data privacy regulations in India. The role is pivotal in protecting sensitive customer, employee, and business data, safeguarding digital assets, ensuring business continuity, and fostering a culture of cyber resilience across the organization. Key Accountability: 1. Strategic & Governance • Define and execute the cybersecurity and data privacy strategy aligned with business goals and regulatory requirements. • Develop, implement, and maintain the Information Security Management System (ISMS). • Ensure board-level reporting on cyber risks, data protection posture, and compliance status. • Stay updated on evolving threats, regulatory changes, and technology innovations. 2. Cybersecurity Operations • Lead enterprise-wide cybersecurity architecture, network security, endpoint protection, and cloud security initiatives. • Establish robust monitoring, threat detection, and incident response capabilities (SOC, SIEM, SOAR). • Ensure disaster recovery (DR) and business continuity planning (BCP) frameworks are tested and effective. • Manage third-party/vendor security risk assessments and ensure compliance with security SLAs.