Associate Director - Cloud Security
Job Description
Designation: Associate Director - Cloud Security
Experience: 15+ years
Location: Remote (India)
Role
Responsible for development, security and operations activities related to developed products and/or ongoing product development in a SaaS environment along with people management responsibilities and customer interaction.
Experience (in years)
Minimum 15-20 years’ experience; including cloud security, devops related project management and people management; customer engagement experience.
Education
Masters/Bachelor’s degree, preferably in Computer Science, Information science, Physics, Math or any other related discipline.
Essential skills
Cloud security; Project management, people management expertise – recruitment, performance management, learning and development. Customer handling; issue resolution; problem solving
Desired skills
Leaning mind-set, good communication skills; managerial skills
Certifications
Proven track record delivering architectures compliant with GxP, 21 CFR Part 11, HIPAA, SOC 2, and ISO 27001.
Preferred Certifications: AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, CISSP, or CISM.
Summary
The resource must have a blend of cloud Security skills along with people management skills, customer handling expertise, issue resolution and problem solving skills; must be solution-oriented.
Roles & Responsibilities
Security Integration in DevOps Pipelines:
%CF; Embed security tools and practices in CI/CD pipelines to detect and mitigate vulnerabilities.
%CF; Implement static and dynamic code analysis, vulnerability scanning, and container security checks.
Infrastructure Security:
%CF; Design and implement secure infrastructure leveraging cloud services and Infrastructure as Code (IaC).
%CF; Ensure configuration management for servers and cloud environments meets security standards.
Automation and Monitoring:
%CF; Automate security testing and monitoring processes to maintain compliance and reduce manual intervention.
%CF; Develop and maintain monitoring systems to detect anomalies and security breaches.
Collaboration and Training:
%CF; Collaborate with cross-functional teams to address security concerns during software development and deployment.
%CF; Provide training and awareness on secure coding practices and DevSecOps tools.
Incident Management:
%CF; Respond to security incidents, conduct root cause analysis, and implement preventive measures. %CF; Maintain and test incident response plans.
Compliance and Governance:
%CF; Ensure systems adhere to regulatory requirements and industry best practices.
%CF; Conduct periodic security audits and assessments to maintain compliance.
People management:
%CF; Participate in hiring, interviewing and recruitment strategy for the team.
%CF; Play a role in performance management of team members
%CF; Devise learning and development goals and execute the same in the team %CF; Ensure employee motivation and growth
Customer satisfaction:
%CF; Ensuring the team delivers and exceeds customer satisfaction
%CF; Resolve issues/concerns if any.
%CF; Develop SLAs/metrics which can showcase the areas for improvement.
Strategy:
%CF; Contribute to strategizing cloud security architecture for products
%CF; Managing teams across customers/products
%CF; Handling escalations, issue resolution
%CF; Solution oriented approach
%CF; Risk analysis and mitigation strategy expertise
Essential Experience
%CF; Managerial experience – managing team or teams of diverse skills
%CF; Strategy and customer engagement experience
%CF; Risk management
%CF; Interacting, handling customers
%CF; Cross-functional team interaction
%CF; Flexibility to adapt to changing technologies and industry trends, embracing innovation and driving technical excellence.
%CF; Project management expertise
