Delivery Manager – Application & Cloud Security Services

Role Summary

end-to-end delivery of cybersecurity services

primary customer interface

timely, high-quality, and compliance-aligned delivery

DevSecOps (preferred)

Cloud Security (preferred)

CERT-In and regulatory requirements

Key Responsibilities

Customer Engagement & Governance

• Act as the single point of contact (SPOC) for customers throughout the engagement lifecycle
• Lead kick-off meetings, periodic status reviews, and closure discussions
• Manage customer expectations, risks, and escalations proactively
  

End-to-End Delivery Ownership

• Own delivery across Application Security, VAPT, Architecture Reviews, DevSecOps, Cloud Security, and Configuration Audits
• Ensure scope adherence, timelines, effort estimation, and delivery quality
• Manage multiple parallel customer engagements effectively
  

Application Security & VAPT Delivery

• Oversee Web, Mobile, and API security testing engagements (SAST, DAST, IAST)
• Manage Network, Infrastructure, and Cloud VAPT activities
• Ensure findings are validated, risk-based, and business-aligned
  

Secure Architecture & Threat Modeling

• Lead secure architecture and design reviews for applications, APIs, and platforms
• Ensure threat modeling using STRIDE / OWASP Threat Modeling methodologies
• Translate architectural risks into actionable remediation recommendations
  

Configuration & Compliance Audits

• Lead configuration audits for Operating Systems, Databases, Network Devices, and Cloud Services
• Ensure alignment with CERT-In guidelines, RBI, SEBI, IRDAI, ISO 27001, OWASP, and CIS benchmarks
• Support customers during regulatory, internal, and third-party audits
  

Quality Assurance & Reporting

• Review and approve VAPT, architecture review, and cloud security reports
• Ensure reports are clear, audit-ready, and executive-friendly
• Maintain consistency in risk rating, impact articulation, and remediation guidance
  

Team & Resource Management

• Plan and allocate AppSec engineers, VAPT consultants, and DevSecOps specialists
• Monitor utilization, delivery performance, and skill alignment
• Mentor teams on customer communication and documentation standards
  

Pre-Sales & Account Support

• Support RFPs, proposals, and customer solution discussions
• Provide inputs for effort estimation, delivery timelines, and engagement models
• Identify opportunities for account growth and repeat business
  

Required Skills & Competencies

Technical & Domain Knowledge

• Strong understanding of Application Security, VAPT, and Secure SDLC
• Working knowledge of DevSecOps and Cloud Security concepts
• Familiarity with OWASP, NIST, CIS, ISO 27001, and CERT-In guidelines
• Experience delivering services to regulated industries (Banking, FinTech, BFSI)
  

Delivery & Leadership Skills

• Excellent customer communication and stakeholder management
• Strong delivery governance and escalation handling skills
• Ability to balance quality, timelines, and customer expectations
  

Preferred Certifications

• CEH / eWPTX / GWAPT
• Cloud Security certifications (AWS / Azure / GCP)
• ISO 27001 Lead Auditor / Implementer