Security Lead - InfoSec & Compliance

talixjobs.com · Bangalore · full-time · 12y – 15y

Remote allowed INR 4000000 – 4500000 2 openings

About this role

Job Overview We are seeking a highly technical, hands-on Lead Security Engineer to spearhead the architecture, design, and implementation of our enterprise-wide security defenses. With 12-15 years of deep technical experience, you will bridge the gap between complex security theory and practical engineering execution. In this role, you won't just oversee policy; you will actively architect secure cloud environments, build robust identity and access pipelines, secure Java-based applications, and define our defense-in-depth strategy for cutting-edge AI technologies. Key Responsibilities Identity & Access Management (IAM) Architecture -Design, implement, and maintain enterprise-grade IAM solutions utilizing Microsoft Active Directory, Google Identity Store, or Okta. -Establish zero-trust access models, privileged access management (PAM), and seamless federation/SSO across hybrid environments. -Enterprise Product Security (M365 or Google) -Hardened and secure the Microsoft 365 (M365) or Google suite, including Exchange Online, SharePoint, Teams, and Microsoft Defender tooling or Google suite of products. -Develop automated monitoring and data loss prevention (DLP) policies to safeguard corporate data. -Application Security & DevSecOps (SAST / DAST / SCA) -Drive the security posture of enterprise Java-based applications by embedding automated tooling into the CI/CD pipeline (DevSecOps). -Deploy, configure, and maintain SAST (Static Application Security Testing) tools (e.g., Checkmarx, Veracode, SonarQube, and GitHub Advanced Security) to catch code-level vulnerabilities during early compilation phases. -Implement DAST (Dynamic Application Security Testing) tools (e.g., Burp Suite pro, OWASP ZAP) to assess live, running application environments against runtime anomalies and authentication bypass bugs. -Manage Software Composition Analysis (SCA) tooling (e.g., Jfrog) to track open-source dependencies and manage licensing and CVE risks in Java/Spring Boot ecosystems.

Requirements

Cloud & Network Security Architect and implement robust security controls across public cloud environments (AWS, OCI, or GCP). Secure modern network architectures using micro-segmentation, Next-Gen Firewalls (NGFW), SASE, and secure cloud connectivity solutions. Emerging Tech & AI Security Define and implement security frameworks for Artificial Intelligence (AI) and Machine Learning (ML) models, specifically addressing vulnerabilities like data poisoning, model inversion, and OWASP Top 10 for LLMs. Leadership & Mentorship Act as the ultimate technical authority for security engineering, mentoring senior and junior engineers. Collaborate directly with product and engineering leads to embed security into the core software development lifecycle (SDLC). Required Technical Qualifications Education/Certifications: Bachelor’s degree in Computer Science, Cyber Security, or equivalent. Preferred certifications: CISSP, CCSP, CASE Java, or platform-specific expert security certifications (AWS/OCI/Google).

Apply

This role is open on talixjobs. Sign in or create a free account to apply.

Apply on talixjobs

Related jobs

More jobs at talixjobs.com · Browse all jobs