Leading Cybersecurity Strategist

The Cybersecurity Architect & Security Engineering Leader is a senior technical leader responsible for shaping the company's cybersecurity architecture and engineering strategies to keep its cybersecurity posture at the leading edge. This role will oversee the Cybersecurity Engineering, Architecture, Exposure/Vulnerability Management, and Identity Security functions, focused on delivering security solutions, projects, and relevant programs that drive enterprise cyber resilience and secure business growth.

This role involves leading critical enterprise security projects, developing and implementing comprehensive security standards, ensuring secure architecture, evaluating and deploying new security solutions, and managing cross-functional cybersecurity initiatives.

• Cybersecurity Strategy & Solutioning: Develop and lead the strategy for modernizing the company's security stack, ensuring architecture stays current with evolving technologies and threats. Oversee/Manage -

1. Spearhead strategic cybersecurity projects across Network Security, Endpoint Security, Cloud Security, and Identity Security, leveraging advanced technologies like SentinelOne, Tenable, Zscaler, SailPoint, and Orca.
2. Drive security solutioning, engineering, and project implementations to mitigate risk and enhance security resilience.
3. Define and maintain security standards, handling exceptions across various technology types and ensuring consistent risk mitigation.
4. Conduct Proofs of Concept (POCs) to evaluate and implement emerging security solutions.

• Security Architecture & Engineering: Oversee cybersecurity engineering and architecture to deliver secure, scalable, and resilient solutions across the enterprise and all business functions.
• Architect and document robust security solutions for critical corporate infrastructure, cloud environments, and customer-facing platforms.
• Oversee the deployment and configuration of security solutions including but not limited to next-generation firewalls, EDR/XDR, disk encryption, data security posture management & DLP solutions, and advanced cloud security management solutions (AWS, GCP, Azure, OCI).
• Maintain a comprehensive Security Architecture Review program for new and existing technologies, ensuring alignment with industry best practices and regulatory standards.

• Vulnerability & Exposure Management: Direct/Oversee the Vulnerability Assessment and Penetration Testing (VAPT) program, ensuring that the program continuously assesses and mitigates security vulnerabilities and exposures across the organization's technology estate.
• Lead a comprehensive Security Vulnerability Management Program, overseeing Tenable project deployments, and operational processes for managing vulnerabilities in workstations, servers, and applications.
• Execute security assessments for 400+ applications, ensuring secure SDLC practices across the development lifecycle.
• Manage network security, cloud security, and external attack surface vulnerability assessments using tools like Orca, Cycognito, BitSight and others.
• Conduct internal and external penetration tests, simulating attacks to proactively identify and address security gaps.

• Identity Governance & Administration: Direct the Identity & Access Management program, enforcing policies, controls and governance that protects access to critical systems and data.
• Oversee the deployment and management of the SailPoint Identity Governance solution, ensuring access is governed based on roles, levels, and lines of business.
• Drive MFA implementation across the organization, along with secure Active Directory configuration and Privileged Access Management (PAM) for high-value admin accounts.

Key Responsibilities:

• Build, lead, and develop high-performing cybersecurity engineering and architecture teams, fostering a culture of excellence and innovation.
• Act as a mentor and advocate for team members' growth, focusing on upskilling talent to address evolving security challenges.

Qualifications and Skills:

• Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. An advanced degree (Master's or MBA) is preferred.
• Certifications: CISSP, CISM, CISA, CRISC, or equivalent; advanced certifications in security engineering or architecture (e.g., GIAC Security Expert (GSE), Certified Information Systems Security Architect (CISSA)) are a plus.

Experience:

• 18+ years of experience in cybersecurity, with a focus on security engineering, architecture, vulnerability management, and identity security in a large, complex global organization.
• Proven experience in designing, implementing, and managing security solutions for critical enterprise infrastructure, including cloud environments, network security, and endpoint protection.
• Experience in IT/ITES/BPO environments (preferred) or in highly regulated environments with a thorough understanding of compliance frameworks, including GDPR, HIPAA, PCI-DSS, NIST, and ISO/IEC 27001.

Benefits:

As a seasoned cybersecurity professional, you'll have the opportunity to join a forward-thinking organization and contribute to the development of cutting-edge security solutions. You'll also enjoy a competitive salary, comprehensive benefits package, and opportunities for career advancement.