Security Infrastructure Management: ->Own and manage security for on-prem, cloud (Azure/AWS), and hybrid infrastructure. • Implement and monitor firewalls, VPNs, IDS/IPS, endpoint protection, EDR/XDR, and network security controls. -> Oversee identity and access management (IAM), SSO, MFA, role-based access controls. ->Ensure regular patching, vulnerability management, and security hardening..
Application & Data Security ->Define and enforce application security standards (secure SDLC, OWASP Top 10). ->Conduct application security reviews, vulnerability assessments, and penetration testing. ->Ensure data security, encryption, backup, and disaster recovery mechanisms.
Cloud & Compliance ->Manage cloud security configurations and best practices. ->Ensure compliance with standards such as ISO 27001, SOC 2, HIPAA (if applicable), GDPR, and internal policies. ->Support audits, risk assessments, and compliance reporting.
Monitoring, Incident Response & Governance ->Establish continuous security monitoring, logging, and alerting. ->Lead incident response, root cause analysis, and corrective action plans. ->Develop and maintain security policies, SOPs, and awareness programs. ->Act as the escalation point for security incidents and risks.
Leadership & Stakeholder Management ->Coordinate with vendors, auditors, and external security partners. ->Collaborate with HR, Legal, Product, and Engineering teams on security matters. ->Lead and mentor security/IT team members. ->Present security posture, risks, and improvements to leadership.
Required Skills & Experience
12 years of experience in IT Security, Infrastructure, or Cybersecurity roles.
