Information Security Lead

2 weeks ago

Pune, Maharashtra, India Philips Full time
Job TitleInformation Security LeadJob Description

In this role, you have the opportunity to

Information Security Lead will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security plan for platforms across Enterprise IT. Information Security Lead will provide the vision and leadership necessary to manage the risk to the platform assigned and will ensure business alignment, effective governance, system and infrastructure availability, integrity and confidentiality. This position reports to Head of Enterprise IT Security.

Information Security Lead need to be strong in the below mentioned areas:

  • Threat modelling
  • Security Testing (includes Dynamic, Static Security Testing),
  • Penetration Testing
  • Application Architecture review
  • Cloud Security Architecture Review
  • Define Security Use Cases
  • Cloud Platform Security
  • API Security
  • Open AI/GenAI Security
  • Data Lake Security
  • Modern Authentication
  • SDLAN Security
  • Network Segmentation
  • MITRE Attack Framework
  • Cyber Security Framework based on Industry Standard / Best Practices
  • CIS Baseline Validation
  • Microsoft Defender Implementation and Monitoring (Malware, EDR, ATP)
  • Microsoft 365 Security
  • Designing of Conditional Access Policy

You are responsible to:

  • Develop and maintain robust security controls to protect Philips business from security breaches/ incidents.
  • Deliver security demand from the business for security controls.
  • Gather Security Management Framework and information security architectural requirements and drive compliance of Enterprise IT systems against those requirements.
  • Manage risk profile of the IT-systems and Suppliers
  • Drive education and awareness activities across platform and Enterprise IT.
  • Evaluate new cybersecurity threats and IT trends and develops effective security controls.
  • Establish regular governance with service owners to review security controls status
  • Liaison with Philips Information Security Office in driving security Improvement Program
  • Evaluate potential security breaches, coordinates response, and recommend corrective actions.
  • Define and report on information security KPIs.
  • Organize the preparation of the security status dashboards including presentation to executive management.
  • Analyze application end to end, prepare threat modeling (STRIDE, PASTA & DREAD) based on different risk scenarios and dirve to fix those risks
  • Cloud Security Management that includes Security Posture Management, Security Baseling, Code validation for Infra As a Code, Golden Image, Key Management, NACL, NSG, Native Security Dashboard Firewall Management, Docker Security, Kubernetes securtiy
  • Prepare security use cases / functional requirements that new solutions need to meet. Validate those requirements are met when the solution is delivered
  • Perform API Security testing that includes – API inventory, logging and monitoring, API Gateway Security, API Services Security.
  • Exposure to network security which includes network segmentation, DDoS, Network Devices Security Baselining and monitoring, firewall rules review for any deviation.
  • Application Security – integration of security tooling with CI/CD pipeline, review of security reports and follow-up to get them closed, DAST, SAST, Web Services Security, Security Focused Testing, Security Code Review etc.
  • Identify risk with authentication and authorization protocols, mitigate risks with legacy authentication, design conditional access policy
  • Management of foundational security tooling e.g. tools like Defender, EDR, Vuln Mgmt, CMDB agent.
  • Perform Defensive / Offensive assessment on IT environment/applications to simulate attacks from real threat actors.
  • Perform attack pattern analysis based on MITRE Attack framework, support solution development to address the pattern
  • Define Data Protection roadmap and work with architecture to meet the requirement. Deploy data protection tools like CASB, DLP etc.

You are a part of

Enterprise IT Security team working closely with Enterprise IT, IT Platform Leaders, CIO and CISO.

To succeed in this role, you should have the following skills and experience

Soft Skills

  • Excellent English language communication skills, both verbal and written. Cross-cultural etiquettes, customer centric and collaborative mindset.
  • Works autonomously within established procedures and practices.
  • Good command on stakeholder management, judgement, conflict resolution, risk & mitigations.
  • Provides leadership to the global team at strategic, tactical, and operational level
  • Maintains current knowledge of industry and regulatory trends and developments for the enterprise technology.
  • Specialized in a number of Security domains such as incident response, operational assessment of security posture, general security management.
  • Thorough understanding of Security Management principles, Security governance principles

Qualification

  • Bachelor's or Master's degree in Information Technology and or commensurate experience in delivering security solutions.
  • Overall Enterprise IT Security experience of 10 yrs or more.
  • Security Certifications such as CISSP, CISM, CISA, CIPP etc. preferred.

In return, we offer you

A warm welcome to a challenging, innovative environment with great opportunities for you to explore. Quality is right on the top of Philips leadership agenda and that means you have the unique opportunity to come in and have a recognized voice to drive and witness exciting, transformational changes. You will be empowered to drive high quality, groundbreaking innovations with a globally recognized, premium brand behind you. Next to that a rewarding career in Philips with attractive package

Why should you join Philips?

Working at Philips is more than a job. It's a calling to create a healthier society through meaningful work, focused on improving 2.5 billion lives a year by delivering innovative solutions across the health continuum. Our people experience a variety of unexpected moments when their lives and careers come together in meaningful ways.

About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.

• Learn more about our business.

• Discover our rich and exciting history.

• Learn more about our purpose.

If you're interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our commitment to diversity and inclusion here.

#DIW

  • Lead- Information Security Engineer

    18 hours ago

    Pune, Maharashtra, India Tata Technologies Full time

    Job OverviewWe are on the lookout for a Technical Lead with a solid 6-8 years of experience who will take charge of leading technical projects in our company. As a part of our team, you will be based in Pune (Pimpri-Chinchwad).Key Requirements:Information Security Audit related documentationISO27001 Audit complianceRisk Management, Access Management, Project...

  • Head of Information Security

    23 hours ago

    Pune, Maharashtra, India Suzlon Group Full time

    Job Purpose IT Security lead is responsible for ensuring the integrity, and availability of the organization's information assets by implementing and maintaining robust security measures and practices. IT Security personnel is responsible for protecting the organization's data, systems, networks, and applications from internal and external threats, thereby...

  • Lead- Information Security Engineer

    1 day ago

    Pune, Maharashtra, India Tata Technologies Full time

    Job Description Designation:Technical Lead Experience: 6-8 Years Education: B.E./ B.Tech./ M.E./ M.Tech./ MCA (CSE, IT, E&TC)If candidate has done CDAC we can also consider B.E.Mechanical as well Job Location: Pune (Pimpri-Chinchwad)Skills: Information Security Audit related documentation ISO27001 Audit compliance Risk Management, Access Management, Project...

  • Sr. Lead Information Security Manager

    22 hours ago

    Pune, Maharashtra, India Dew Software Full time

    Dew Software, a recognized global leader in the Digital Transformation space, is seeking a highly skilled and experienced individual to join our team as a Sr. Lead Information Security Manager (EKM). At Dew Software, we are committed to partnering with Fortune 500 companies to drive their digital success and deliver exceptional solutions. With a focus on...

  • Sr. Lead Information Security Manager

    22 hours ago

    Pune, Maharashtra, India Dew Software Full time

    Dew Software, a recognized global leader in the Digital Transformation space, is seeking a highly skilled and experienced individual to join our team as a Sr. Lead Information Security Manager (EKM). At Dew Software, we are committed to partnering with Fortune 500 companies to drive their digital success and deliver exceptional solutions. With a focus on...

  • Avp - Information Security

    17 hours ago

    Pune, Maharashtra, India Skillventory Full time

    AVP - Information Security: From 10 to 15 year(s) of experience- ₹ Not Disclosed by Recruiter PuneorRoles and ResponsibilitiesKey responsibilitiesManaging information security from ground up and understanding gaps within technology, including- overlap with other technology, compatibility etc. 2. Ensuring the proper change management, incident management,...

  • Team Lead, Information Security Operations

    24 hours ago

    Pune, Maharashtra, India PHH Mortgage Full time

    POSITION SUMMARY:Security operations team is responsible for ensuring that the Confidentiality, Integrity, and availability of the organization is not impacted. In this role, individual is expected to develop and maintain a robust SIEM infrastructure, PAM, Alert monitoring, and Incident Management. The monitoring of the known and unknown threats is directly...

  • Information Security Analyst

    22 hours ago

    Pune, Maharashtra, India Quess Full time

    About Us "Quess IT Staffing is India's largest IT staffing company with over 20 years of experience in staffing IT professionals in 300+ companies across levels and skillsets. Our 10,000+ associates deployed in 80+ cities and towns are proficient in over 500 technological skills. Our associates help enable cutting edge solutions some of the biggest names...

  • Information Security Engineer- Lead

    23 hours ago

    Pune, Maharashtra, India Tata Technologies Full time

    Job DescriptionDesignation:Technical LeadExperience:6-8 YearsEducation:./ ./ ./ M. Tech./ MCA (CSE, IT, E&TC)If candidate has done CDAC we can also consider .Mechanical as wellJob Location:Pune (Pimpri-Chinchwad)Skills:Information Security Audit related documentationISO27001 Audit complianceRisk Management, Access Management, Project Management, Application...

  • Lead- Information Security Engineer

    20 hours ago

    Pune, Maharashtra, India Tata Technologies Full time

    Job DescriptionDesignation:Technical LeadExperience:6-8 YearsEducation:B.E./ B.Tech./ M.E./ M. Tech./ MCA (CSE, IT, E&TC)If candidate has done CDAC we can also consider B.E. Mechanical as wellJob Location:Pune (Pimpri-Chinchwad)Skills:Information Security Audit related documentationISO27001 Audit complianceRisk Management, Access Management, Project...

  • Ref7225p-information Security

    21 hours ago

    Pune, Maharashtra, India WNS Global Services Full time

    Company DescriptionWNS (Holdings) Limited (NYSE:WNS), is a leading Business Process Management (BPM) company. We combine our deep industry knowledge with technology and analytics expertise to co-create innovative, digital-led transformational solutions with clients across 10 industries. We enable businesses in Travel, Insurance, Banking and Financial...

  • Senior Security Engineer

    18 hours ago

    Pune, Maharashtra, India TAC Security Full time

    Job Title: Senior Security Engineer - VAPT Location: Pune, India Company Description TAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security...

  • Lead- Information Security

    19 hours ago

    Pune, Maharashtra, India Tata Technologies Full time

    Job Description Job Role: Technical Lead- DevOps Experience: 6-8 Years Qualification: / / (Information Technology/ Electronics/ Computer Svience), (No Mechnical background) Job Location: Pune Skills & Requirement: Linux, Database (MySQL), Kubernetes Complex enterprise system operations and management, Understanding of the DevOps, Kafka. ...

  • Information Security Analyst

    24 hours ago

    Pune, Maharashtra, India Amdocs Full time

    In one sentence The Information Security Analyst will lead the efforts to secure the Amdocs ecosystem by guiding and monitoring the different IT/ Product/ Business teams to ensure organizational security, by designing a secure architecture of software products/ conducting risk and threat analysis/ analyzing and managing a secure solution in the domain of...

  • Information Security Analyst

    1 day ago

    Pune, Maharashtra, India Amdocs Full time

    In one sentenceThe Information Security Analyst will lead the efforts to secure the Amdocs ecosystem by guiding and monitoring the different IT/ Product/ Business teams to ensure organizational security, by designing a secure architecture of software products/ conducting risk and threat analysis/ analyzing and managing a secure solution in the domain of...

  • Information Security Manager

    19 hours ago

    Pune, Maharashtra, India Sidel Full time

    Information Security ManagerContract TypePermanentCountryINDIALocationPuneYour opportunityPerforming activities related to information governance, risk, and compliance, ranging from managing cyber risks for the Group (including business processes, IT processes, and OT processes), assessing the security of new and existing solutions, defining and maintaining...

  • Information Security Manager

    23 hours ago

    Pune, Maharashtra, India Sidel Full time

    Information Security Manager Contract Type Permanent Country INDIA Location Pune Your opportunity Performing activities related to information governance, risk, and compliance, ranging from managing cyber risks for the Group (including business processes, IT processes, and OT processes), assessing the security of new and...

  • Information Security Specialist

    23 hours ago

    Pune, Maharashtra, India Amdocs Full time

    In a nutshell, the role of the Information Security Specialist is to ensure the security of the Amdocs ecosystem by guiding and monitoring various IT, Product, and Business teams, designing secure software architecture, conducting risk and threat analysis, and managing secure solutions in infrastructure and applications while addressing stakeholders'...

  • Information Security Coordinator

    22 hours ago

    Pune, Maharashtra, India Verve Group Full time

    Who We AreWho You AreWe're searching for a driven and reliable information security professional to be the backbone of our Information Security Management System (ISMS). In this crucial role, you'll be the bridge between our business and engineering teams, ensuring the CISO's security vision is translated into practical action. You'll translate security...

  • Senior Information Security Engineer

    20 hours ago

    Pune, Maharashtra, India Tech Alchemy Full time

    About Tech AlchemyTech Alchemy was established in October 2016 after a successful exit from a prior startup. Recognizing a gap in the market for early-stage tech startups seeking comprehensive solutions, Tech Alchemy emerged as a software development agency offering not only development services but also strategic guidance, design support, fundraising help,...