Cybersecurity Strategist

Safeguard sensitive data, ensure compliance with regulatory frameworks, and strengthen the security posture of our healthcare insurance ecosystem.

The role demands strong expertise in threat management, data protection, cloud security, and regulatory compliance with hands-on technical knowledge across the full cybersecurity stack.

• Develop, implement, and maintain enterprise-wide cybersecurity strategy, frameworks, and controls.
• Monitor, detect, and respond to cyber threats and incidents using SIEM and SOC processes.
• Conduct Vulnerability Assessments, Penetration Testing (VAPT), Red/Blue/Purple team exercises.
• Perform digital forensics, root cause analysis, and incident response (IR) lifecycle management.
• Define and enforce policies for Data Privacy, Identity & Access Management (IAM/PAM), and DLP.
• Secure infrastructure across network, endpoint, application, database, and cloud environments.
• Implement security controls for Cloud (AWS, Azure, GCP), Containers (Docker, Kubernetes).
• Manage and tune security tools such as Firewalls, WAF, IDS/IPS, EDR, SIEM, SOAR, CASB, DDoS protection.
• Work with DevOps teams to embed security in CI/CD pipelines (DevSecOps practices).
• Ensure compliance with IRDAI, RBI, GDPR, HIPAA, ISO 27001, NIST, PCI-DSS, SOC2.
• Conduct third-party/vendor risk assessments and ensure supply chain security.
• Lead business continuity & disaster recovery (BCP/DR) from a security standpoint.
• Drive security awareness programs for employees and stakeholders.

Technical Skills Required

Core Security Areas

• Network Security: Firewalls, IDS/IPS, VPN, Zero Trust, SD-WAN, NAC.
• Endpoint Security: EDR/XDR solutions (CrowdStrike, Carbon Black, SentinelOne, Microsoft Defender).
• Application Security: OWASP Top 10, SAST, DAST, RASP, API security.
• Cloud Security: CSPM, CWPP, CASB; secure configuration of AWS, Azure, GCP.
• Identity & Access Management: IAM, PAM (CyberArk, Okta, Ping, Azure AD, SailPoint).
• Data Protection: DLP solutions, encryption (AES, RSA, TLS, PKI), key management, tokenization.
• Security Operations: SIEM (Splunk, QRadar, ArcSight, ELK), SOAR, threat hunting, SOC operations.
• Threat & Vulnerability Management: Qualys, Nessus, Rapid7, Burp Suite, Metasploit.
• Incident Response & Forensics: EnCase, FTK, Volatility, Wireshark, memory forensics.
• DevSecOps: Container scanning (Aqua, Twistlock, Snyk), CI/CD pipeline security, IaC scanning.
• Governance, Risk & Compliance (GRC): RSA Archer, ServiceNow GRC, ISO/NIST frameworks.

Advanced Areas

• Red/Blue/Purple Teaming: Adversary simulation, MITRE ATT&CK framework.
• Malware Analysis: Reverse engineering, sandboxing.
• Blockchain & IoT Security: Secure protocols, device hardening.
• AI/ML Security: Model poisoning, adversarial attacks (good-to-have for advanced roles).
• Threat Intelligence: STIX/TAXII, MISP, integrating CTI feeds.

Required Qualifications

• Bachelor's/Master's in Computer Science, Information Security, or related discipline.
• Certifications (one or more preferred):
• CISSP, CISM, CISA, CRISC (Governance & Risk).
• CEH, OSCP, OSWE, GPEN (Offensive Security).
• CCSP, CCSK, AZ-500, AWS Security Specialty (Cloud Security).
• ISO 27001 LA/LI, PCI-DSS, HIPAA, GDPR compliance certifications.

Soft Skills

• Strong analytical, troubleshooting, and documentation skills.
• Excellent communication skills to interact with business and technical stakeholders.
• Ability to handle high-pressure security incidents and provide timely resolution.
• Leadership capability for senior roles (mentoring SOC teams, driving projects).