Yodlee delivers innovative financial applications that make online banking more profitable. Yodlee's patented software solutions help consumers achieve greater financial awareness, control, and satisfaction through the online channel. Over 100 leading financial institutions and portals offer Yodlee-powered solutions to millions of consumers worldwide. A privately-held company, Yodlee investors include Accel, Institutional Venture Partners, S1 Corporation, and Warburg Pincus. Yodlee is headquartered in Redwood City, California.

The Information Security Officer (ISO) is responsible for ensuring adherence to Yodlee’s Information Security Program at our Bangalore office. This is a hands-on position that requires practical experience in the areas of physical and logical security of networks, operating systems, applications, databases and network security. The Bangalore ISO is responsible for security oversight in the office. This includes identifying security risks in all functions (software engineering, finance, operations, IT) and resolving these with senior management team and corporate security function. The ISO is the resident security expert, and is a key resource who drives security initiatives and manages cross-functional project teams. The ISO is the representative of the Yodlee security function to Management, staff, auditors and clients. This position is a member of the Yodlee Security Office and reports to the US-based corporate Information Security Officer.

Primary Responsibilities • Oversee all aspects of security within 7x24 operations: production; engineering; and corporate environments • Monitor network and host vulnerability testing of infrastructure for verification of security measures • Review and audit all aspects of operations at Bangalore office • Manage security and operational audits with clients; regulatory agencies; and industry leading security vendors • Recommend security requirements for Bangalore office • Develop and document office and corporate-wide security policies and procedures • Drive successful implementation and enforcement of security policies and procedures. • Lead implementation of security initiatives • Manage remediation of any findings from internal or external assessments. • Identify security risks and develop solutions to eliminate or minimize risks. • Act as senior lead of technical security incident response team • Champion BCP and DR programs for the office

• 8+ years in information security role with progressive experience in the following areas: o Security policy development o Security audits and assessments o Application and database security o Network security architecture o Security infrastructure technologies - Firewalls, Intrusion Detection Systems (IDS) o Expertise in vulnerability analysis • Hands-on System Administration - UNIX (Solaris, Linux) and Windows 2000/XP • Moderate-level knowledge of and experience with: o TCP/IP architecture, routing protocols and security systems o Enterprise-class routers, L2/L3 switches and firewalls o Windows OS and Active Directory security o Solaris and Linux host and network security o Data Encryption Implementations (DES/3DES, AES, etc.) • Project Management skills and experience • Technical Writing experience or equivalent • Experience in the financial services industry • Experience in security and business risk assessment • CISSP certification preferred • CISA certification preferred • Previous supervisory or management experience