Job Description

Entity Governance CISO Lead  

This is a high‑impact cyber governance leadership role within the Group CISO organization, responsible for strengthening and sustaining the cybersecurity posture of Wipro’s acquired and strategic entities. 

The role engages closely with Entity CISOs, Security teams, PMO, Threat Intelligence, and Risk stakeholders—starting from integration and continuing through steady‑state operations—driving governance, compliance, risk visibility, and security effectiveness across entities. 

R͏oles & Responsibilities

In this role, you will be responsible for: 

• Driving cyber governance and compliance across entities during integration and steady state operations. 
• Tracking and reporting compliance against key security controls across servers, endpoints, workloads, cloud environments, and other technology assets. 
• Monitoring and reporting entity security posture, including: 
• Zero‑day and critical vulnerabilities 
• Credential and PII leakage 
• Domain abuse and brand monitoring 
• Tracking implementation of protections against Indicators of Attack (IoA) and Indicators of Compromise (IoC) identified through Threat Intelligence. 
• Assisting with incident management at entities, ensuring timely closure with robust root cause analysis (RCA). 
• Tracking and reporting vulnerability remediation across both external‑facing and internal assets. 
• Supporting the creation, consolidation, and governance of Entity Risk Registers, aligned to Group Baseline Levels (GBLs) and management reporting requirements. 
• Monitoring and reporting cloud security posture for entity workloads and driving remediation of identified risks. 
• Facilitating technology control effectiveness assessments, including: 
• Application & Infrastructure Risk Assessments 
• Vulnerability Assessments 
• Penetration Testing and related assurance activities 
• Tracking remediation progress post assessments and driving closure with entity teams. 
• Supporting onboarding and engagement with third‑party security rating agencies, addressing discrepancies and misreporting. 
• Collecting, validating, and periodically reconciling entity asset inventories. 
• Reporting entity risk, compliance, and security posture to senior management. 
• Tracking effectiveness of information security awareness and phishing simulation programs across entities. 
• Enhancing collaboration through quarterly CISO Council meetings. 
• Planning and facilitating support for ISO 27001:2022 audits and certifications for entities. 

Q͏ualifications

• We are looking for a cybersecurity leader with strong governance orientation, who is comfortable operating across multiple entities, and translating security risks into clear management insights. 

You will be successful in this role if you bring: 

• Strong experience in cyber governance, risk management, and compliance 10 + Years. 
• Hands‑on exposure to vulnerability management, incident response, threat intelligence, and cloud security posture management. 
• Ability to work across multiple stakeholders and geographies, driving outcomes through collaboration. 
• Experience with security assessments, audits, and certifications (ISO 27001 preferred). 
• Strong analytical skills with the ability to track, consolidate, and report security metrics and risks. 
• Excellent communication skills to engage with Entity CISOs, leadership teams, and senior management. 
• A proactive, structured, and outcome‑oriented mindset. 
• Ability to balance strategic oversight with operational follow‑through.