Title : AVP Cloud and Digital Security.

Location : PAN India.

Duration : 1 YEAR CONTRACT and REMOTE.

Reports To : VP Head of Cloud and Digital Security.

We are seeking an experienced and visionary AVP Cloud and Digital Security to lead the design, implementation, and governance of secure multi-cloud environments.

As a key member of the second line of defense (LOD-2), you will play a pivotal role in shaping our cloud security strategy, ensuring regulatory compliance, and fostering a security-first culture across the enterprise.

Key Responsibilities

- Cloud Architecture & Security: Design and implement secure architectures across AWS, Azure, and GCP, integrating cloud-native security controls to protect critical assets.

- Cloud Governance: Develop and maintain cloud security policies, frameworks, and standards aligned with ISO 27001, NIST, CSA CCM and other regulatory requirements.

- Risk & Compliance: Lead cloud threat modeling, risk assessments, and vulnerability management programs while driving adherence to GDPR, HIPAA, PCI-DSS and other compliance mandates.

- DevSecOps & Automation: Embed security into CI/CD pipelines, leverage IaC tools like Terraform/CloudFormation, and promote secure coding practices across development teams.

- Security Operations: Oversee monitoring, SIEM/SOAR integrations, and incident response processes to strengthen detection and response capabilities.

- Leadership & Collaboration: Act as the primary liaison for cloud security governance, mentor junior team members, and collaborate with technology, risk, and compliance teams to align security strategy with business goals.

- Strategic Roadmap: Define and execute the cloud security roadmap, staying ahead of emerging threats and recommending proactive measures.

- Executive Reporting: Deliver regular reporting on cloud security posture, risks, and mitigation strategies to senior leadership.

Qualifications & Skills :

Experience : 1215 years in cybersecurity, with at least 8+ years in cloud security architecture & governance (preferably in BFSI).

Technical Expertise :

- Strong knowledge of multi-cloud security (AWS, Azure, GCP), CNAPP, SSPM, KSPM, and SASE.

- Proficiency with Terraform, CloudFormation, Docker, Kubernetes, and cloud security automation.

- Hands-on experience with DevSecOps, CI/CD security integration, and threat modeling.

Governance & Compliance : Proven track record implementing ISO 27001, NIST, PCI-DSS, GDPR, HIPAA frameworks.

Leadership : Ability to lead cross-functional teams, influence stakeholders, and align security initiatives with business objectives.

Certifications : Preferred CISSP, CCSP, CISM, CRISC, AWS Security Specialist, Azure Security Engineer, Google Cloud Security Engineer, CKA, DevSecOps Practitioner.