Information Security Manager

4 days ago

Bangalore North Rural Karnataka, India EmbarkGCC Full time ₹ 12,00,000 - ₹ 36,00,000 per year

Role: Information Security Manager

Base location: Bangalore, Chennai, Mumbai, Pune & Hyderabad

Key Responsibilities:

Security Architecture Review & Threat Modeling:

  • Conduct
    security architecture reviews
    for applications, cloud environments, and IT systems to identify risks.
  • Perform
    threat modeling (e.g., STRIDE, PASTA, MITRE ATT&CK, DREAD)
    to assess potential attack vectors and weaknesses.
  • Analyze
    authentication, encryption, and access control mechanisms
    within application and system architectures.
  • Review security controls against industry standards and organizational policies (e.g.,
    NIST, ISO 27001, OWASP, CIS Controls, TISAX
    ).
  • Provide
    secure design recommendations
    to mitigate identified risks.

Application & Cloud Security Assessment:

  • Assess
    web, mobile, and cloud-based applications
    for security risks and misconfigurations.
  • Evaluate
    API security, microservices architectures, and containerized environments
    for vulnerabilities.
  • Validate implementation of
    IAM, Zero Trust, network segmentation, and encryption standards
    .

Security Risk & Compliance Evaluation:

  • Identify
    security gaps in applications and infrastructure
    and recommend compensating controls.
  • Ensure compliance with
    GDPR, SOC 2, PCI-DSS, ISO 27001, TISAX, and other relevant security frameworks
    .

Collaboration & Reporting:

  • Create
    comprehensive reports
    detailing identified
    risks, mitigation strategies
    ,
    cloud specific controls
    ,
    data flow diagram, trust zones
    , and
    improvement recommendations.
  • Collaborate with stakeholders to develop and refine the
    enterprise security architecture and threat modeling strategies.

Requirements

Qualifications & Experience:

  • Bachelor's or Master's degree
    in Cybersecurity, Computer Science, Information Technology, or a related field.
  • Over 9
    Years of experience, including
    3+ years
    of experience in security architecture review, threat modeling, and risk assessment.
  • Strong expertise in
    threat modeling frameworks
    such as
    STRIDE, PASTA, MITRE ATT&CK, OWASP ASVS
    .
  • Knowledge of
    cloud security (AWS, Azure, GCP), API security, and microservices architecture
    .
  • Familiarity with
    IAM, Zero Trust, MFA, RBAC, PAM, and network security principles
    .
  • Experience in
    secure SDLC, DevSecOps, and security assessment
    .
  • Hands-on experience with
    security assessment tools
    (e.g., Microsoft Threat modeling, Microsoft Visio).
  • Understanding of
    penetration testing methodologies, security misconfigurations, and application security risks
    .

Preferred Certifications:

  • CISSP (Certified Information Systems Security Professional)
  • CSSLP (Certified Secure Software Lifecycle Professional)
  • CCSP (Certified Cloud Security Professional)
  • AWS/Azure Security Certifications
  • CEH (Certified Ethical Hacker) or OSCP (Offensive Security Certified Professional)

  • Information Security Manager

    3 weeks ago

    Bangalore, Karnataka, India EMBARKGCC SERVICES PRIVATE LIMITED Full time

    Role Information Security Manager Base location Bangalore Chennai Mumbai Pune Hyderabad Key Responsibilities Security Architecture Review Threat Modeling Conduct security architecture reviews for applications cloud environments and IT systems to identify risks Perform threat modeling e g STRIDE PASTA MITRE ATT CK DREAD to assess potential attack vectors and...

  • Manager - Information Security

    2 weeks ago

    Bangalore, Karnataka, India Infosys Full time

    Responsibilities Partner with the product development team in the development of new products including cloud based and recommend privacy related features controls in summary Privacy by Design Review and respond to privacy related sections in the RFI RFQ MSA from clients and collaborate in the feasibility study of privacy related requirements clauses of the...

  • Information Security Specialist

    3 weeks ago

    Bangalore, Karnataka, India Epiroc Full time

    We are now looking for an experienced and qualified candidate with the main mission to work as Information Security Specialitst Mission To understand the threat landscape improve the effectiveness of Epiroc s Cybersecurity Program and protect business assets Identify Information Security risks and required mitigating activities Raising awareness and...

  • Information Security Manager

    2 weeks ago

    bangalore, India Mashreq Full time

    Job PurposeManagement:To Strategize, develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally.To ensure compliance of the Organization with the defined policy & framework with a data driven approach ExecutionTo ensure that the protection operations are executed effectively in a timely manner and with...

  • Senior Manager – Information Security

    1 day ago

    Bangalore, Karnataka, India GENPACT Full time

    Ready to shape the future of work At Genpact we don t just adapt to change we drive it AI and digital innovation are redefining industries and we re leading the charge Genpact s our industry-first accelerator is an example of how we re scaling advanced technology solutions to help global enterprises work smarter grow faster and transform at scale From...

  • Information Security Engineer

    5 days ago

    Bangalore, Karnataka, India Zscaler Full time

    About Zscaler Serving thousands of enterprise customers around the world including 45 of Fortune 500 companies Zscaler NASDAQ ZS was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users As the operator of the world s largest security cloud Zscaler accelerates digital transformation...

  • Information Security Engineer

    1 week ago

    Bangalore, Karnataka, India Infosys Full time

    Responsibilities 11 1 Work closely with the IT and project teams in getting a thorough understanding on the requirement on both network and cloud front review from the security standpoint and recommend relevant solutions 11 2 Responsible for effective coordination and prompt proactive communication with the relevant teams involved in the requirements 11 3...

  • Information Security Lead Auditor

    4 weeks ago

    Bangalore, Karnataka, India Infosys Full time

    Responsibilities Information security standards ISO 27001 ISO 31000 risk management standards ISO 22301 CISA certified information systems auditor CISM CISSP CEH CIPP-E CIPP -US CCIE CCNA COBIT SOX SSAE18 CISM etc Advanced Networking principles software engineering principles information security principles Additional knowledge and domain...

  • Information Security Manager

    7 days ago

    Bangalore, India Mashreq Full time

    Job Purpose Management : To Strategize, develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally. To ensure compliance of the Organization with the defined policy & framework with a data driven approach Execution To ensure that the protection operations are executed effectively in a timely manner and...

  • Information Security Engineer

    3 weeks ago

    Bangalore Urban, Karnataka, India, IN InCred Capital Full time

    Job Summary: We are seeking a highly motivated and independent Information Security Engineer to joinour information security team. The ideal candidate will possess a broad range of technical and compliance expertise across various information security domains. This role requires an individual who can work autonomously, manage multiple projects, and take...