Lead – Engineering

Key Accountabilities

1. Secure Design & Integration Oversee the design and integration of secure, scalable architectures across cloud, hybrid, and on-prem environments, embedding zero-trust and automation.

2. Team Leadership Lead and manage a high-performing security engineering team, ensuring effective resource utilisation, capability development, and budget compliance.

3. Framework Implementation Implement and tailor security frameworks (e.g., SABSA, NIST, TOGAF) to strengthen governance, compliance, and enterprise-wide consistency.

4. Technology Evaluation & PoCs Assess emerging security technologies and lead Proof of Concept initiatives to validate solutions before enterprise adoption.

5. Advanced Solution Deployment Manage the deployment and integration of advanced security technologies (e.g., SIEM, DLP, cloud security), ensuring effectiveness and alignment with architecture.

6. Risk & Threat Modelling Conduct threat modelling and architectural risk assessments to proactively identify and mitigate vulnerabilities in systems and projects.

7. Stakeholder Engagement Act as a trusted advisor to IT and business leadership, translating complex security concepts into actionable guidance.

8. Collaborate with the Architecture team to ensure "secure-by-design" principles are technically feasible and correctly deployed in heterogeneous environments.

9. Continuous Improvement & Innovation Drive continuous improvement by adopting emerging trends, enhancing practices, and promoting security-by-design across the enterprise.

Skills Required (Knowledge and Skills)

1. Leadership & Strategy Proven ability to lead high-performing teams, influence senior stakeholders, and drive strategic security initiatives through strong decision-making and problem-solving skills.

2. Security Architecture & Frameworks Deep understanding of enterprise security architecture and hands-on experience with SABSA, TOGAF, and NIST frameworks, including application of Zero Trust principles and security-by-design methodologies.

3. Cloud & Infrastructure Security Experience designing secure architectures across Azure, AWS, GCP, and OpenStack platforms, with strong knowledge of cloud security controls and compliance standards such as CSA, PCI DSS, and ISO.

4. Security Technologies Proficient in implementing a wide range of security technologies, including next-generation firewalls, web application firewalls, IDS/IPS, DLP, DDOS protection, CASB, ZTNA, SIEM, SOAR, EDR etc.

5. Identity & Access Management Strong experience with IAM solutions, including authentication protocols, SSO, identity governance, and role-based access controls in large enterprise environments.

6. Risk, Threat & Incident Management Skilled in performing risk assessments, threat modelling, and designing mitigation controls, with hands-on experience in managing security incidents, digital forensics, threat hunting, and crisis response.

7. DevSecOps & Automation Knowledge of deployment orchestration, infrastructure-as-code, and automated security configuration management practices within DevSecOps environments.

8. Proof of Concept & Evaluation Capable of designing and executing POCs for evaluating security technologies, including test planning, performance analysis, and stakeholder reporting.

9. Compliance & Regulatory Knowledge Familiar with regulatory frameworks such as GDPR, CCPA, SOX and experienced in implementing technical controls to ensure compliance and audit readiness.

10. Emerging Technologies & Innovation Up to date with the latest security trends, tools, and threat landscapes, with added advantage for experience or exposure to big data, AI/ML in cybersecurity, and container/Kubernetes security.

11. Communication & Collaboration Excellent written and verbal communication skills with the ability to clearly convey complex technical security concepts to both technical and non-technical stakeholders.

Key Attributes (Experience and Qualifications)

1. Education: Bachelors or Masters degree (BE/B. Tech/ME/M. Tech/MCA/MS) in Computer Science, Information Security, or related field from a reputed institute.

2. Experience: 14-18 years in Information/IT/Network/Cyber Security, with strong leadership in security architecture across complex, multi-sector environments.

3. Certifications: At least two of the followingCISM, CISSP, ISSAP, ISSEP, SABSA. Additional certifications (CISA, CCSP, GIAC, etc.) are a plus.

4. Skills: o Expertise in designing and reviewing secure architectures across infrastructure, applications, and cloud. o Strong project planning, task allocation, and team mentoring capabilities. o Excellent communication, stakeholder management, and cross-functional collaboration.

5. Attributes: High personal drive, adaptability, and ability to perform under pressure with a focus on quality and delivery.