5 Security Strategies Jobs

As the Lead Enterprise Architect, you will be responsible for designing security products and platforms to enhance our security posture. You will play a key role in defining and leading counter-threat and security architecture, guiding vendor selection, and implementing standards to streamline processes. Your ability to understand business and developer needs will be crucial in fostering strong relationships within and outside the organization. Your passion for learning and hands-on experience in building security solutions will drive your quick evaluation of new technologies with a commercial mindset. Safety is paramount, and you will ensure that our architecture, designs, and processes prioritize operational safety and enhance digital security. Your extensive experience in developing security strategies, architecture roadmaps, and capability models for global solutions across cloud and hybrid environments will be invaluable. You should have a proven track record in conducting security assessments and leading architecture governance for security applications, data, and cloud services in complex environments. A strong understanding of cybersecurity frameworks, risk management, compliance, and security practices is essential for ensuring secure and reliable architectures. Your expertise in agile methodologies and design thinking will be instrumental in driving digital transformation and architectural innovation. Effective communication of complex technical concepts to diverse audiences at all organizational levels is a key aspect of this role. A degree in computer science or engineering, along with certifications such as CISSP, CISM, CISA, or TOGAF, will be advantageous. Exposure to enterprise architecture, cloud security, security engineering, secure development, integration, databases, identity and access management, and master data management is beneficial. Knowledge of authentication, access control, encryption, and security across cloud, operating systems, networks, and databases is desirable. If you are looking to take on a challenging role that involves shaping security strategies and architectures in a dynamic environment, this opportunity is for you. For further details, please contact us at 8291818391 or email us at chanchal@mmcindia.biz.,

We are seeking a highly skilled Senior Security Engineer (GRC & Advisory) to join our Cybersecurity & Advisory Services team. The ideal candidate will play a pivotal role in driving security governance, risk management, and compliance initiatives, while providing strategic advisory services to clients. This role requires a mix of deep technical understanding, regulatory knowledge, and business acumen to ensure security aligns with organizational goals. Key Responsibilities Lead Governance, Risk, and Compliance (GRC) engagements, including assessments, frameworks, and implementation. Develop and maintain security strategies, roadmaps, and policies aligned with industry standards and client objectives. Provide advisory services on risk management, regulatory requirements, and cybersecurity best practices. Conduct risk assessments, gap analysis, and compliance audits (ISO 27001, NIST, GDPR, PCI-DSS, etc.). Design and implement enterprise-wide security governance frameworks to strengthen organizational resilience. Engage with C-level stakeholders to translate security risks into business impact and strategic recommendations . Collaborate with internal/external teams to ensure effective incident response, business continuity, and risk mitigation . Stay up to date with emerging threats, regulations, and security technologies to proactively guide clients. Qualifications & Skills Bachelors or Masters degree in Information Security, Cybersecurity, Computer Science, or related field . 7+ years of experience in Cybersecurity GRC, Risk Management, and Security Advisory roles . Strong knowledge of governance frameworks and standards (ISO 27001, NIST, COBIT, PCI-DSS, GDPR, CSA, etc.). Experience in developing security strategies, policies, and compliance roadmaps . Proven ability to engage with senior executives and deliver high-impact advisory services . Excellent communication, presentation, and stakeholder management skills. Relevant certifications preferred: CISM, CISSP, CRISC, CISA, ISO 27001 Lead Implementer/Lead Auditor, CGEIT . Show more Show less

ROLES & RESPONSIBILITIES Key responsibilities .Safeguarding an organisation's assets, employees and customers. .Develop and implement effective security strategies and protocols to protect the company against threats, theft, and other security risks. .Security personnel responsible for their training. .Regular security assessments and audits to identify vulnerabilities and areas for improvement. ERP implementation and support. .Manage access control systems, surveillance equipment and other security technologies to ensure proper functioning and effectiveness. .Investigate security breaches, incidents and violations, document findings and implement corrective actions. .Maintain strong relationships with external partners, such as law enforcement agencies and security vendors, to enhance security capabilities. .Conduct security awareness, policies and procedures through training programs and communication initiatives. .Plan and coordinate security operations for specific events. .Analyze and evaluate security operations to identify risks or opportunities for improvement. .Conduct security training and programs for all employees, including emergency drills and strict measures within the premises. .Safety equipment audit and maintenance. .Floor, dock yard safety and premises safety hygiene. .Site safety audit and implementation. QUALIFICATIONS & COMPETENCIES .Diploma/Graduate from a recognized university or institute. .Should have minimum 2 to 5 years experience in Warehouse / logistics Security & Safety. .Knowledge of emergency response planning and incident management. .Training or experience in emergency response and crisis management. .Creating growth .Adapt and Evolve .Ability to drive change through innovation & process improvement. .Ability to lead and drive safety culture in the organization. .Candidate must be able to present themselves well across the organization. .Knowledge of MS Office, Excel

The Security Architect role at GSK is a pivotal position within the Cyber Security Office, reporting directly to the Security Architecture Lead. This role offers an exciting opportunity to collaborate with cross-functional teams from IT, Cyber Security, and Business Units to architect and design robust security solutions that effectively protect GSKs enterprise networks from evolving cyber threats. As an individual contributor, you will focus on strategic design and innovation, ensuring that our security strategies align with industry standards and best practices such as TOGAF, SABSA, Purdue, and NIST frameworks. This role is designed for individuals who are passionate about cybersecurity, possess strong expertise in security, and are eager to make a significant impact on GSKs security posture. Key Responsibilities: - Drive the strategic design and implementation of innovative security solutions and controls - Stay at the forefront of industry standards, regulations, and best practices related to IT and OT security, ensuring continuous improvement - Generate comprehensive documentation, certification, and testing protocols for the deployment of new security solutions - Continuously monitor and analyze current cybersecurity threats, trends, and emerging technologies to inform strategic security initiatives - Work closely with engineering and architecture teams to ensure security requirements are integrated into all phases of the system development lifecycle - Define and implement advanced security configurations, policies, and procedures for IT and OT assets and systems - Effectively communicate with stakeholders at all levels, translating complex technical concepts into actionable security strategies - Support the development and implementation of security architectures across various domains, including data security, AI, cloud, network security, monitoring detection and response, threat, risk, vulnerability asset and configuration management, and platform security - Conduct security assessments and gap analyses to identify and mitigate security risks - Provide technical guidance and mentorship to security engineers and other team members - Perform assessments of capabilities and tools to ensure alignment with GSK business and security needs - Assist with product Proof of Concept (POC) evaluations to validate security solutions - Create and execute test plans to rigorously evaluate security controls and document results to provide unbiased outcomes that demonstrate alignment with GSK business and security needs in a seamless manner Required skills: - Proven experience in developing security strategies and reference architectures - Familiarity with TOGAF, SABSA, or Purdue Enterprise Reference Architecture - Experience in designing and deploying network security controls and solutions - Extensive knowledge of security technologies, including encryption, authentication, authorization, security protocols, data and privacy, AI/ML, and application development - Strong communication and interpersonal skills, ability to effectively manage stakeholders - Proficiency in writing, developing, and maintaining technical documentation, including security standards, strategies, and implementation plans - Ability to prioritize and filter actions to focus on those with significant impact on the program - Capability to work with multiple stakeholders to promote practical solutions to complex security problems - Excellent problem-solving and analytical skills, with the ability to work under pressure - Hands-on experience in at least three of the following security domains: data security, AI, cloud, network security, monitoring detection and response, threat, risk, vulnerability asset and configuration management, or platform security - Experience with threat modeling and risk assessment methodologies - Experience in security automation and orchestration - Knowledge of AI and machine learning security considerations - Understanding of regulatory requirements/industry standards (e.g., GDPR, HIPAA, PCI) Required Qualifications: - Advanced degree in Computer Science - 5+ years of cyber security engineering experience - Any of the following: CISSP, CISM, CEH along with Azure, GCP or AWS certifications - Experience with security tools and technologies (e.g., firewalls, IPS, Email Security, SOAR, Threat Intel, SIEM, DLP, EDR, encryption, etc.) - Experience in global manufacturing, pharma, and/or a life sciences company Benefits: - Career at one of the leading global healthcare companies - Company Car or Car Allowance - Long-Term incentives - Contract of employment - Attractive reward package (annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday benefits - Life insurance and pension plan - Private medical package with additional preventive healthcare services for employees and their eligible - Sports cards (Multisport) - Possibilities of development within the role and company's structure - Extensive support of work-life balance (flexible working solutions, short Fridays option, health & well-being activities) - Supportive community and integration events - Modern office with creative rooms, fresh fruits every day - Free car and bike parking, locker rooms and showers Why GSK Uniting science, technology, and talent to get ahead of disease together. GSK is a global biopharma company with a special purpose to unite science, technology, and talent to get ahead of disease together so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns as an organization where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology, and oncology). Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged, and challenged to be the best they can be. A place where they can be themselves feeling welcome, valued, and included. Where they can keep growing and look after their well-being. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.,

The role you are applying for will involve coordinating with Group CISO & the Asia Pacific Region (APR) Risk Management team to implement central directives regarding cybersecurity governance, conducting analysis, and organizing committees within APR. This position will report directly to the Regional Head of Risk Management, Asia Pacific Region (APR). The ideal candidate for this role should have experience working as a Chief Information Security Officer (CISO) with a background in Cyber Security, Cyber Risk Management, and Risk Management. You will be responsible for managing the APR region (Asia Pacific/Europe) and should have prior experience working with APR countries or other Asian countries, primarily Europe. It is essential to have expertise in developing and executing security strategies. Candidates with a history of frequent job changes (e.g., almost every year) will not be considered. Knowledge of EU regulations, such as DORA, is advantageous. Certifications such as CISSP, CISM, or CISA are required for this position. Your main responsibilities will include adapting Group documents to enhance local cyber resilience, organizing quarterly regional ISS Committees, cascading risk mapping to the local level, supporting the assessment of local third parties" security, advising on local/regional IT and Cyber Projects, and overseeing cybersecurity regulations in Asia Pacific. You will also be involved in conducting Cyber Risk assessments at a regional level and other risk management activities as needed. Candidates should hold a bachelor's degree in information technology, computer science, or a related field. Professional qualifications such as CISSP, CISM, or CISA are necessary. A minimum of 10 years of experience in IT management/cybersecurity governance or related fields, preferably in financial institutions, is required. You should have a strong understanding of security principles, standards, and technologies, including access control, network security, identity management, and cyber incident management. The candidate should possess strong communication and interpersonal skills to collaborate effectively with stakeholders at all levels. Being well-organized, detail-oriented, a good team player, and capable of establishing and maintaining effective working relationships with internal stakeholders are essential attributes for this role. Additionally, you should be able to work independently and demonstrate strong self-motivation.,