Security Engineering Lead

Position: Security Engineering Lead

Team: Information Security

Location: Hyderabad

About Us:

GlobalData is a productivity and intelligence platform that empowers leaders to act decisively in a world of complexity and change. By uniting proprietary data, human expertise, and purpose-built AI into a single, connected platform, we help organizations see what's coming, move faster, and lead with confidence.

Our solutions are used by over 5,000 organizations across the world's largest industries, delivering tailored intelligence that supports strategic planning, innovation, risk management, and sustainable growth.

Data that goes deeper

Proprietary coverage of 95% of global GDP, synthesized in real time from internal and external sources, aligned under a single business taxonomy - giving you earlier insight, unified context, and decisions you can trust.

Experts who turn insight into impact

Human insights that AI alone can't replicate, from industry specialists and strategic advisors, embedded in your workflows to decode complexity and guide high-value action.

AI that moves smarter & faster

AI that doesn't just think, but acts - forecasting market moves, surfacing answers in seconds, and freeing your teams to focus on execution when timing matters most.

Workflow solutions

Together, our six solutions turn intelligence into action, helping every team make smarter,

faster decisions. Each solution focuses on the decisions that matter most, driving

measurable impact.

What we are looking for:

10+ years of experience in security engineering, infrastructure security, or application security

Demonstrated experience designing or operating Secure SDLC practices in fastmoving product teams

Hands-on expertise in web and API security, including authentication, authorisation, data flows, and common vulnerability classes

Proven experience integrating SAST, DAST, and SCA into CI/CD pipelines

Strong threat modelling and secure design skills for complex, cloud-native systems

Experience with modern backend and frontend or mobile stacks (e.g. JVM, Node.js, Go, TypeScript)

Familiarity with AWS and cloud-native architectures (IAM, KMS, containers, microservices)

Knowledge and Experience Securing AI-Generated Code

Strong experience securing cloud platforms (AWS, Azure)

Experience integrating security tools into modern engineering environments

Strong understanding of common attack vectors, threat landscapes, and defensive controls

Proven ability to lead technical teams in fast-paced, global environments

Bachelors degree in computer science, Engineering, or related field

Preferred Certifications

CISSP, CISM, CCSP, or equivalent certifications

Experience with DevSecOps ( OWASP) container security, and infrastructure-ascode

Familiarity with compliance frameworks (ISO 27001, SOC 2, NIST)

Scripting or automation experience (Python, Bash, Terraform)

Key Attributes

Strategic thinker with strong execution capability

High integrity and sound risk judgment

Ability to translate complex risk and compliance issues into clear business impact

Comfortable operating at both tactical and executive levels

Key Responsibilities:

The Security Engineering Lead is responsible for designing, building, and operating scalable security solutions that protect the organizations infrastructure, applications, and data. This role partners closely with Engineering, Cloud, and GRC teams to embed security by design across the technology stack.

Lead the security engineering function, setting technical direction and execution priorities

Design and implement security controls across cloud, infrastructure, applications, and endpoints

Partner with Engineering and DevOps to embed security into SDLC and CI/CD pipelines

Deep understanding of modern software development, API security, Embed security into planning and delivery via threat modelling, security requirements, and automated controls

Lead application security reviews for new systems, major features, and high-risk changes across web, API, mobile, and backend services

Define and maintain secure architecture patterns for authentication, authorisation, APIs, data protection, and multi-tenant isolation

Own the application security tooling stack (SAST, DAST, SCA), integrating it into CI/CD with high-signal, low-noise outputs

Partner with engineers to triage and remediate vulnerabilities based on exploitability, impact, and regulatory risk

Work with Security Operations to improve application-level logging, telemetry, and incident response readiness

Act as a trusted advisor to engineering teams, raising the bar through practical guidance, documentation, and targeted training

Drive threat modelling, secure architecture reviews, and security design standards

Lead vulnerability management, remediation tracking, and risk-based prioritization

Support incident response and forensic investigations in partnership with SOC teams

Collaborate with GRC to support audits, risk assessments, and compliance requirements

Provide clear security posture metrics and reporting to senior leadership

Build, mentor, and scale a high-performing security engineering team in India

Commitment to D&I and EEO:

We believe strongly in the value of diversity and creating supportive, inclusive

environments where our colleagues can succeed. As such, GlobalData is proud to be an

Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or

employee receives less favorable treatment on the grounds of gender, age, disability,

religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions

or requirements which cannot be shown to be justifiable.