Azure Cloud Security Lead

Role & responsibilities

10 to 16 years of experience in architecture, security reviews and requirement definition for complex product environments.

Experience in threat modelling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.

Experience of deploying and securing containers, container orchestration and mesh technologies (such as EKS, K8S, ISTIO).

Ability to articulate complex architectural challenges with the business leadership and product management teams.

Serve as the primary liaison between business units, IT & functional leadership, and group cyber security teams.

Manage and maintain the technology portfolio of enterprise information protection services.

Ensure regular maintenance and timely upgrades of security systems & services to prevent downtime and enhance performance.

Accountable for Security Incident Management. Maintain and improve security incident response procedures and playbooks.

Oversee the daily monitoring and review of security event activities and cyber threat landscape to ensure ongoing and continued maturity of the organizations security controls in close coordination with SOC & MSS team

Manage resolution of cyber security incidents and coordinate with engineering support for security systems.

Identify and diagnose potential threats, including root cause analysis and after-action reviews to ensure security controls defend the enterprise against potential cyber threats

Collect and analyses cybersecurity threats to develop a deep understanding and awareness of cyber threats and actor’s tactics, techniques and procedures (TTP) to derive and report indicators that help organisations detect and predict cyber incidents and protect systems and network from cyber threats.

Proactively searches for undetected threats in networks and systems, identifies their indicators of compromise (IOCs), and recommend mitigation plan

Reporting and Documentation

Develop & streamline process and procedures for efficient security operations.

Provide regular reports & metrics on service operations

Perform routine audits on security of the infrastructure and present findings.

Conduct periodic service review meetings with relevant stakeholders – both internal & external.

Ensure adherence to security controls and policies