Cyber Security Specialist

Senior Cyber Security Partner

Location: Hybrid at Bengaluru, Karnataka, India

Experience - 6-11 years

Roles and Responsibilities

• Collaborate closely with cross-functional teams to integrate security practices into the product lifecycle, ensuring robust application security.
• Lead efforts in threat modeling, risk analysis, and security code reviews to discover and mitigate vulnerabilities early in the development process.
• Develop and enforce security guidelines and standards to enhance overall product security, staying updated with the latest security technologies and trends.
• Design and implement security architectures that align with industry best practices and organizational requirements, ensuring scalable and secure applications.
• Act as a subject matter expert in security architecture, providing strategic guidance and mentorship to the junior team members and stakeholders.
• Drive incident response initiatives and coordinate with relevant teams to swiftly address and remediate security incidents, ensuring minimal disruption to operations.
• Promote a security-first culture within the organization by leading security training and awareness programs.
• Engage with external partners and vendors to evaluate and integrate third-party security solutions as needed.

Required Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum of 8 years of experience in cyber security, with a focus on application security and security architecture.
• Proficiency in conducting threat modeling, vulnerability assessments, and security audits.
• Strong knowledge of security standards and protocols such as OWASP, NIST, and ISO 27001.
• Experience designing secure applications in cloud-based environments, with knowledge of at least one major cloud provider (AWS, Azure, GCP).
• Strong problem-solving skills and the ability to work under pressure to address security challenges effectively.
• Excellent communication skills to articulate complex security concepts to non-technical stakeholders.
• Certifications such as CISSP, CISM, or CEH are strongly preferred.

Key Responsibilities

• Partner with engineering teams to enhance product security features and foster a secure software development lifecycle (SDLC).
• Oversee the development and implementation of security solutions to protect information systems and infrastructure from cyber threats.
• Conduct ongoing security research and vulnerability scans to identify and remediate potential security weaknesses.
• Prepare and present detailed security findings and reports to executive management, facilitating informed decision-making.
• Lead the security incident management process, coordinating response efforts and post-incident analyses to prevent future occurrences.
• Evaluate, recommend, and leverage advanced security tools and technologies to enhance security posture.
• Maintain compliance with relevant legal, regulatory, and organizational standards and practices.