Description :

This role owns and drives all security and operating-model concerns raised by strategic enterprise customers for Icertis Cloud Infrastructure (ICI).

The role acts as the single accountable owner for :

- Cloud security posture in customer-owned Azure environments.

- Deviation management (e.g., non-domain-joined VMSS).

- Operating-model alignment (patching, monitoring, CI/CD, access).

- Evidence, visibility, and executive decision support.

The role exists to remove friction, ambiguity, and rework in large-customer security engagements by converting repeated questions into clear positions, guardrails, and auditable programs.

Responsibilities :

Strategic Customer Security Ownership (Primary) :

- Own end-to-end security conversations for strategic customers.

- Act as the single-threaded owner across Cloud Ops, DevOps, CPS, Engineering, and Compliance.

- Translate customer security standards into implementable, testable, and supportable models.

- Ensure consistent positions across decks, calls, audits, and escalations.

Cloud Infrastructure & Operating Model Alignment :

- Own customer discussions around :

1. VMSS vs VM security equivalence.

2. Non-domain-joined deployments.

3. Image-based enforcement, identity lifecycle, drift handling.

- Lead definition and validation of :

1. Patching lifecycle and visibility.

2. Monitoring and telemetry alignment (MDE, Sentinel, customer tools).

3. Support and escalation RACI in customer-owned subscriptions.

- Drive clarity on what Icertis owns vs what the customer owns.

Deviation, Risk & Exception Management :

- Own formal risk narratives for deviations from customer standards.

- Coordinate executive-level risk acceptance with customer CSO teams.

- Ensure deviations are :

1. Explicitly documented.

2. Guard-railed.

3. Time-bound.

4. Supported by equivalent security outcomes.

Change Management & Control Governance :

- Own structured approaches for :

1. GPO change management.

2. Emergency vs planned enforcement.

3. Impact assessment and rollback logic.

- Ensure every change has :

1. Clear ownership.

2. Defined timelines.

3. Evidence and traceability.

CI/CD, Deployment & Tooling Alignment :

- Own customer security posture for :

1. Git runners / CI-CD execution models.

2. Private Link vs DMZ-based execution.

3. Network allow-listing and proxy constraints.

- Ensure deployment models remain :

1. Secure.

2. Auditable.

3. Scalable across future releases (not bespoke per customer).

Evidence, Visibility & Audit Readiness :

- Own the evidence model for strategic customers :

1. Patch visibility.

2. Scan outputs (SAST, SCA, VAPT).

3. Image lineage and deployment traceability.

- Convert ad-hoc evidence requests into repeatable, system-driven artifacts.

- Support audits without creating parallel operational processes.