IndiGo is India’s largest and most preferred passenger airline and amongst the fastest growing airlines in the world.We have a simple philosophy: offer fares that are affordable, flights that are on time, and provide a courteous and hassle-free travel experience across our unparalleled network. We show that low cost does not mean low quality. With our fleet of over 320 aircraft, we operate well over 2000+ daily flights, connecting over 118 destinations (of which 32 international), welcoming 100 million customers on board last year. We have an industry leading on-time performance and one of the highest customer NPS in the Indian spanet. At IndiGo, we will continue to extend our scope, by spreading our wings internationally, developing from a domestic carrier to a global aviation giant.
Position Overview
We are seeking an experienced Security GRC (Governance, Risk & Compliance) Lead to own and drive our Risk Management Program. This role will be responsible for defining, implementing, and maturing enterprise-wide information security risk management practices, aligning them with business strategy, regulatory requirements, and industry frameworks.
Risk Management Leadership
Conduct regular risk assessments, control evaluations, and threat modeling across systems, vendors, and business processes.
Develop, refine, and maintain security policies, standards, and procedures aligned with frameworks such as ISO 27001, NIST CSF, SOC 2, and CIS Controls.
Collaboration & Influence
Partner with business stakeholders to ensure alignment with regulatory requirements (e.g., GDPR, HIPAA, SOX, PCI-DSS).
7+ years of experience in Information Security, GRC, or Risk Management, with at least 3 years in a lead or senior role.
Strong understanding of information security principles, risk assessment methodologies, and governance frameworks (ISO 27001, NIST, COSO, etc.).
Experience with risk management tools (e.g., Archer, ServiceNow GRC, OneTrust, or similar).
Professional certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer, or CGEIT.
Additional information
At IndiGo, we believe in the innate strength of an energetic, diverse, and inclusive workforce, where the viewpoints and life experiences of our employees help us foster strong connection with all our customers. Our diversity equity and inclusion efforts are designed to attract, nurture, and advance the lives of our employees and customers irrespective of their, but not limited to, gender, race, color, religion, caste, creed, ethnicity, origin, language, social and economic status, sexual orientation, persons with disabilities, nationality, age, marital and maternity status.
IndiGo does not charge fees for Job Interviews, Registration, Verification or Offer Letters. All Official communication will be from verified IndiGo IDs (e.g., xxxgoindigo.in). Please report any fake job offer to eco.goindigo.in
At IndiGo we are committed to fostering an inclusive and equitable workplace. All employment decisions are made solely on the basis of merit and qualifications, without regard to a candidate’s gender, race, color, religion, caste, creed, ethnicity, language, sexual orientation, marital status, maternity status, disability, or social and economic background’
