Head of Security Engineering

S&P Global Market Intelligence

12 - 15 years

15 - 20 Lacs

gurugram bengaluru

Posted:2 days ago| Platform:

Apply

Skills Required

security engineering python cloud security ai vulnerability management cissp incident response dast gcp application security appsec recruitment compliance http coaching sast https api security aws sdlc architecture azure

Work Mode

Work from Office

Job Type

Full Time

Job Description

We are seeking a Head of Security Engineering with 1215 years of hands-on experience to own the end-to-end technical security strategy and execution in a high-velocity, AI-first data organization.

Reporting directly to the VP of Business Information Security Officer (EDO BISO), you will lead and mentor a high-performing team of security engineers specializing in cloud security, application security (AppSec), and AI/ML security. You will foster a culture of automation, accountability, and proactive defence while remaining deeply hands-on in architecture, remediation, and incident response.
This is a player-coach role: you will design, implement, and operate secure systemsnot just advise.

Responsibilities

Define and execute the technical security roadmap across cloud environments (AWS, GCP, Azure) and AI/ML systems, while architecting secure-by-design patterns.
Lead threat modelling, red team exercises, and adversarial simulations for generative AI, promoting secure SDLC adoption across engineering teams.
Secure the ML model lifecycle against various threats and implement guardrails for generative AI, ensuring data protection through encryption and differential privacy.
Build and mentor a team of cloud, AppSec, and AI security engineers, conducting regular performance coaching and establishing KPIs for vulnerability management.
Lead incident response for security events and maintain security observability, ensuring thorough post-mortems and remediation.
Collaborate with AI, Data, and Product leaders to embed security in roadmaps and represent security in executive forums and audits.
Ensure compliance with security standards through automated evidence collection.

Required Qualifications

12-15 years of progressive experience in security engineering, with 5+ years in leadership roles.
Certifications: CISSP, , CSSLP, AWS/GCP Security Specialty, or equivalent.
Deep expertise in: Cloud security (AWS, GCP, Azure). Application security (OWASP Top 10, SAST/DAST/SCA) container security API security, AI/ML security (adversarial ML, model integrity and hardening)
Proven ability to remediate vulnerabilities end-to-end, not just identify them.
Hands-on experience with threat modeling (STRIDE, DREAD), red teaming, and incident response.
Programming skills (Python, Go, or similar) for scripting and automation.
Experience with secure SDLC, DevSecOps, and shift-left practices.

Preferred Skills

Experience securing RAG architectures, vector databases, and prompt engineering workflows.

More Jobs at S&P Global Market Intelligence

Full Stack / ReactJS Software Developer

Gurugram

3 - 7 yrs

INR 5 - 9 Lacs

Solution Architect ( Java, Angular )

Hyderabad

15 - 20 yrs

INR 45 - 50 Lacs

Senior Associate, Independent Quality Team

Hyderabad

10 - 15 yrs

INR 30 - 35 Lacs

Quality Assurance Team Lead

Bengaluru

6 - 7 yrs

INR 8 - 12 Lacs

Vendor Operations Administrator (Technology)

Hyderabad

5 - 7 yrs

INR 7 - 9 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.