Kran - Lead - Security/Performance/Compliance

As a Security, Performance and Compliance Lead, you will be responsible for overseeing and managing the protection of information systems, data, and assets from internal and external threats.

This role involves leading a team of security professionals, developing security strategies, implementing policies, and driving security Develop and implement a comprehensive security strategy that aligns with requirements of the project

- Implement performance tuning and optimization of systems and applications.

- Work with regulatory standards such as GDPR, HIPAA, ISO 27001, and NIST

- Identify and assess security and performance risks.

- Develop and implement risk mitigation strategies.

- Lead security initiatives, including the development and implementation of security policies and procedures.

- Conduct regular security assessments and vulnerability assessments to identify and address potential threats.

- Implement security measures, including user authentication, roles, and permissions.

- Conducted regular security audits and ensured compliance with data protection regulations

- Lead performance optimization efforts for critical applications, ensuring efficient resource utilization.

- Implement monitoring and profiling tools to identify and address performance bottlenecks.

- Implement and maintain security controls for network infrastructure, servers, and cloud environments.

- Collaborate with development, operations, and business teams to integrate security and performance measures into the SDLC.

- Work closely with legal and privacy teams to address data protection requirements.

- Track, analyze, and report on security metrics, such as incident response times, vulnerability remediation, and security training effectiveness.

- Provide regular updates to executive leadership and stakeholders on the security posture of the organization, including risks, incidents, and ongoing initiatives.

Skills Required:

- In-depth knowledge of security best practices, including encryption, access controls, and secure coding principles.

- Expertise in performance tuning and optimization of systems and applications.

- Familiarity with regulatory standards such as GDPR, HIPAA, ISO 27001, and NIST

- Experience in identifying and assessing security and performance risks.

- Ability to develop and implement risk mitigation strategies.

- Led security initiatives, including the development and implementation of security policies and procedures.

- Conducted regular security assessments and vulnerability assessments to identify and address potential threats.

- Implemented security measures, including user authentication, roles, and permissions.

- Conducted regular security audits and ensured compliance with data protection regulations

- Led performance optimization efforts for critical applications, ensuring efficient resource utilization.

- Implemented monitoring and profiling tools to identify and address performance bottlenecks.

- Implemented and maintained security controls for network infrastructure, servers, and cloud environments.

- Collaborated with development, operations, and business teams to integrate security and performance measures into the SDLC.

- Worked closely with legal and privacy teams to address data protection requirements.

Qualification:

B./B.Tech in any specialization or MCA.

Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are advantageous.

Overall Experience in design, implementation and management of Web application systems.

8 or more years of experience in large and complex IT systems development and implementation projects