WNS, part of Capgemini, is an Agentic AI-powered leader in intelligent operations and transformation, serving more than 700 clients across 10 industries, including Banking and Financial Services, Healthcare, Insurance, Shipping and Logistics, and Travel and Hospitality. We bring together deep domain excellence - WNS’ core differentiator - with AI-powered platforms and analytics to help businesses innovate, scale, adapt and build resilience in a world defined by disruption.Our purpose is clear: to enable lasting business value by designing intelligent, human-led solutions that deliver sustainable outcomes and a differentiated impact. With three global headquarters across four continents, operations in 13 countries, 65 delivery centers and more than 66,000 employees, WNS combines scale, expertise and execution to create meaningful, measurable impact.

• Contributing to information security risk assessment processes

• Conducting Infosec risk and impact assessments based on security and privacy principles.

• Supporting the review of security and privacy aspects in contracts.

• Helping with compliance certification and client audit activities.

• Assisting in ensuring adherence to information security and privacy regulations.

• Providing support to business and risk management leaders on security matters

• Contributing to the handling of security incidents and data breach investigations.

• Helping maintaining risk assessment trackers and sensitive information inventories.

• Supporting third-party risk management activities.

• Assisting in driving security awareness initiatives.

• Conducting review of contractual contracts, privacy contracts / exhibits / privacy agreements

• Handle information security incidents, data breaches investigations

• Support business unit leaders and risk management leaders in issues related to information security

• Creation and maintenance of risk assessment trackers and keeping them current

• Ensure that contract arrangements are in place and being complied with. Obtain necessary evidence for the same. Conducting necessary due diligence on subcontractors / third party.

• Experience on privacy regulations (HIPAA/ HITECH, GDPR, POPIA, PIPEDA)

Education: 

Bachelor’s degree in information technology or computer science, or a related field

Experience: 

Minimum 5-7 years of experience in Information Security.

Technical Skills: 

Good understanding of IT and Information Security concepts, terminology, and common frameworks (e.g., NIST, ISO 27001) is highly desirable

Soft Skills

Excellent organizational and time management skills with strong attention to detail.

Exceptional written and verbal communication skills, capable of summarizing complex information clearly and concisely.

Strong interpersonal skills to effectively collaborate with various internal teams and stakeholders.

Ability to handle multiple tasks concurrently and prioritize effectively in a dynamic environment.

Certifications (Preferred): o CISA, CISM, CISSP