goodfit gradient
  1. All Open Positions
  3. Infiniti Software Solutions Private Limited
  5. Security Compliance Lead
IN
Infiniti Software Solutions Private Limited
Worldwide
Security Compliance Lead
Chennai, Tamil Nadu, India
✦
December 18, 2025
Start Interview
About This Role

Security and Compliance Lead

Summary

The Security and Compliance Lead oversees the organization’s security, risk, and compliance programs with a focus on regulatory frameworks, data protection, cybersecurity, and emerging requirements in AI governance. The role ensures ongoing compliance with standards such as SOC 2, ISO 27001, PCI DSS, GDPR, privacy regulations, and supports secure AI adoption and responsible use across the organization.

Key Responsibilities

Governance, Risk, Compliance & AI Oversight

- Develop, implement, and maintain security and compliance frameworks aligned with SOC 2, ISO 27001, PCI DSS, GDPR, and other standards.
- Establish AI governance controls, including model risk assessments, AI usage policies, and ethical AI guidelines.
- Ensure compliance with AI-related regulations such as the EU AI Act and NIST AI Risk Management Framework.
- Lead risk assessments for both technology systems and AI models.

Security Operations and Technical Oversight

- Lead Vulnerability Assessment and Penetration Testing (VAPT) and manage remediation tracking.
- Drive cybersecurity initiatives including incident response, threat modeling, and monitoring.
- Ensure proper handling and protection of PII, sensitive data, and AI datasets.
- Oversee secure data lifecycle management for AI systems.

AI and Data Security Enablement

- Partner with engineering and data science teams to embed secure-by-design and responsible-AI principles.
- Assess AI tools/platforms for compliance, privacy, and security risks.
- Implement measures to detect bias, drift, data leakage, and unauthorized model access.

Customer and Business Support

- Lead responses to RFPs, vendor assessments, and client due-diligence requests, including AI-specific requirements.
- Provide guidance to business teams on security and AI regulatory obligations.
- Support product and leadership teams in addressing client expectations.

Training, Awareness & Culture

- Deliver training on cybersecurity, data protection, and safe AI usage.
- Promote a culture of compliance, privacy, and responsible use of AI.

Required Skills and Qualifications

- Strong knowledge of SOC 2, ISO 27001, PCI DSS, GDPR, and data protection principles.
- Understanding of AI governance, AI risks, and regulatory trends.
- Experience with VAPT, audit processes, and cybersecurity operations.
- Ability to collaborate across engineering, data science, and legal teams.
- Strong documentation and communication skills.

Years of Experience - 5 to 8 years

Location - Chennai (WFO)