2,800 Security Lead jobs in India

About the Role:

The Information Security Lead will be responsible for developing and implementing the organization’s information security framework to safeguard patient data, clinical systems, and enterprise IT infrastructure. This role ensures compliance with healthcare regulations, international standards, and hospital group policies, while building a culture of security awareness across all functions.

The position will drive proactive risk management, oversee incident response, and ensure business continuity in an increasingly digital healthcare environment.

Location: HSR Layout, Bangalore

Experience:

• Minimum 8–10 years of progressive experience in information security, with at least 4 years in a managerial role.
• Experience in healthcare/critical infrastructure environments strongly preferred.

Qualifications:

• B.E/B.Tech/MS in Information Security, Computer Science, or related field.
• Certifications (preferred): ISO 27001 Lead Implementer/Lead Auditor, CISSP, CISA, CISM, CEH.
• Strong understanding of information security frameworks, encryption, IAM, SIEM, cloud security, and medical IT environments

Key Deliverables:

A. Strategy & Governance

• Define and implement the information security strategy aligned with business and healthcare regulations.
• Develop and enforce security policies, standards, and procedures across hospital units.
• Maintain the Information Security Risk Register and ensure timely risk assessments and mitigation.
• Lead audits and ensure compliance with ISO 27001, HIPAA, NABH, and other standards.

B. Risk & Incident Management

• Investigate and manage security incidents, ensuring root cause analysis and prevention.
• Conduct vulnerability assessments and penetration tests, ensuring timely closure of gaps.
• Oversee Business Continuity and Disaster Recovery (BC/DR) for critical hospital systems.

C. Technology & Vendor Oversight

• Implement and manage security solutions (SIEM, IAM, encryption, endpoint security, etc.).
• Embed security controls in procurement and third-party contracts.
• Audit IT vendors, MSPs, and medical IT providers to ensure ongoing compliance.

D. Awareness & Culture Building

• Drive security awareness programs in collaboration with HR/L&D.
• Clarify roles and responsibilities to strengthen accountability across teams.
• Advise leadership and project teams on security risks in new systems and initiatives.

Mandatory Candidate Skills:

• Expertise in risk assessment, incident response, and compliance.
• Proficient in vulnerability management and modern security tools.
• Skilled in designing security programs for multi-site organizations.
• High integrity with commitment to data privacy and patient safety.
• Strong leadership, communication, and stakeholder management

Cargill's size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way.
We are a family company providing food, ingredients, agricultural solutions and industrial products that are vital for living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials - from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill.
**Job Purpose and Impact**
The Country Security Lead will work under the direction of global security to mitigate enterprise risk by identifying and monitoring physical security risks. In this role, you will be accountable for the effective and efficient execution of global security's intelligence framework which includes synthesizing information from various resources, explaining physical security risk assessment data in an easy to understand format and developing and maintaining relationships with key stakeholders within global security and other functions and businesses.
**Key Accountabilities**
+ Lead, assist and develop complex programs to identify and mitigate risks in close partnership with internal and external stakeholders.
+ Partner closely with the organization key stakeholders to lead creation and administration of complex programs.
+ Lead and assist in external stakeholder management through development of requirements that ensure vendor compliance and contract commitments.
+ Identify, evaluate and plan strategies for the continuous improvement of the domain programs by collaborating with internal and external stakeholders.
+ Independently handle complex issues with minimal supervision, while escalating only the most complex issues to appropriate staff.
+ Conduct site-specific assessments, oversee implementation of physical security controls, and advise on design and technology integration to ensure compliance with corporate and regulatory standards across regional facilities.
+ Monitor and analyze regional threat intelligence, collaborate with internal and external partners to enhance situational awareness, and translate key incident and investigation metrics into actionable insights and recommendations for business and security operations.
+ Support investigations into security-related incidents, coordinate with internal stakeholders and law enforcement, and maintain documentation standards to ensure thorough, compliant, and effective resolution of cases.
+ Help to lead regional threat management efforts by collaborating with cross-functional teams to assess, prevent, and respond to workplace violence incidents, while developing prevention strategies and training programs aligned with corporate standards.
+ Serve as an advisor to provide operational-level physical security guidance to ensure compliance with corporate and governmental regulatory policies, standards, guidelines or procedures.
+ Other duties as assigned
**Qualifications**
**Minimum Qualifications**
+ Bachelor's degree in a related field or equivalent experience
+ Minimum of four years of related work experience
**Preferred Qualifications**
+ Certified Protection Professional (CPP) and / or Physical Security Professional (PSP) certification
+ Perform security risk assessments based on vulnerability criteria to determine appropriate levels of protection and security necessary for the site.
**Disclaimer**
Protect yourself against recruitment fraud. Cargill will not ask for money, processing fees, or bank information as a pre-condition of employment. We are aware that unauthorized individuals may have posed as Cargill
recruiters, made contact about job opportunities, and extended job offers via text message, instant message or chat rooms. To ensure a job posting is legitimate, it must be listed on the Cargill.com/Careers website.Learn how to protect yourself from recruitment fraud ( Offer**
We provide a fast paced stimulating international environment, which will stretch your abilities and channel your talents. We also offer competitive salary and benefits combined with outstanding career development opportunities in one of the largest and most solid private companies in the world.
**Interested? Then make sure to send us your CV and cover letter in English today:** **Follow us on LinkedIn:** ** is committed to being an inclusive employer. Click here to find out more

NB : "Recruiting for a scheduled commercial bank"

Qualification Needed : MCA / B Tech in IT with all round IT exposure of 10+ years

InfoSec Certifications like CISSP or similar is a must

Job Location : Thrissur

Responsibilities:

• Lead all ITD IT Security Initiatives and IT Department counterpart to CISO

• Ensure security compliances in IT Security implementations for a robust and secure IT set up. Supervise and guide IT Security implementation team at IT Dept and ensure they meet assigned tasks in timely and efficient manner.

• Implementation of IT Security Tools. Coordinate with IT Dept for IT and IS Security processes, initiatives, policies, implementations etc.

• Align IT Security initiative with IT Security Policies of the Bank.

• Involve in the Implementation & improvement of standard IT & Risk management processes and procedures, document them in a format consistent with company’s standards.

Key Competencies:

• Strong knowledge on IT Info Security all Domains

• Data Analysis and Data interpretation skills

Key Responsibilities :

1. Ownership and accountability for managing the Global Information Security Operations.
2. Identify, mitigate, and manage Revenue, Financial and Brand risks to the organization.
3. Maintain continuous awareness and understanding of emerging information security threats, vulnerabilities, and control techniques
4. Build and lead a Global team of cyber and technology professionals, to manage the security posture across On-Premise and Cloud.
5. Drive cyber security architecture, technology, and resiliency processes demonstrating strong levels of governance and risk management
6. Lead independent risk assessments and challenge the design and effectiveness of controls with hands on skills to conduct analysis and assessments. Lead gap assessments per laws, regulations and emerging trends. Manage compliance towards standards (SOC2, ISO27001, GDPR)
7. Design and implement security solutions across all security domains of Identity and access, network, infrastructure, applications, assets to comprehensively manage evolving threats and regulations.
8. Very strong technical expertise in the areas of information security architecture, tools, firewalls, intrusion detection, remediation and SOC operations.
9. Develop strong working relationships with all levels of the organization, and have the ability to handle and resolve conflict, to achieve results and enact wide-scale impact across the organization.
10. Work in tandem with all Global site support staff which would include Hardware, Software and network technicians, to implement, train and take corrective action on security aspects.
11. Manage and mature components of Global Information Security Operations

• Hybrid Infrastructure security.
• Asset Detection & Vulnerability Management
• Incident Response and Business continuity
• Threat Intelligence and Risk Mitigation

Essential

1. Bachelor’s degree in Computer Science, Information Technology, Information Systems, Engineering, or related field.
2. CISSP and/or CISM certification (or ability to attain within 12 to 18 months of hire).
3. 5+ years’ experience in the architecture, design, and implementations of cyber and network security solutions in a multi-tiered web-based environment with legacy systems with machine networks.
4. 10+ years of related management experience including people management and project/program.
5. 10+ years in Information Technology roles with progressive technical and management responsibilities.
6. Securing highly dynamic private and public cloud environments such as AWS, Azure, Google Compute
7. Knowledge of common information security management frameworks
8. Up-to-date knowledge of information security methodologies and trends in both business and IT.
9. Extensive project management experience with large multi-faceted projects (budget, staff, complexity).
10. Excellent knowledge of current protocols and standards, including Active Directory, Group Policies, Core Switching/Routing, SSL/IPSec, SAN, Virtualization, Business Continuity, Disaster Recovery.

Qualification

Bachelor's degree, preferably in Software Engineering, Information Systems, Computer Science, or related IT discipline.

Experience

15+ Years

Smarsh is the leader in communications compliance, archiving, and analytics. We provide compliance across the broadest set of communications channels with insights on what’s being captured. Smarsh customers manage over 500 million daily conversations across 80 channels and growing. Customers include the top 10 U.S., top 8 European, top 5 Canadian, and top 3 Asian banks. The Smarsh advantage is customers stay ahead of compliance and uncover patterns and relationships hidden within their data.

At Smarsh , we’ve been helping our customers manage new forms of communication since 1998. We work closely with regulators including the SEC, FINRA, IIROC, and the PRA and FCA, and with our customers, to ensure that they understand the capabilities of today’s technology and that our platform meets their most stringent requirements. Our products include Connected Capture, Connected Archive, Web Archive & Business Solutions.

About the team:

The Lead Security Operations Analyst - plays a critical role in the Security Operations Center (SOC) by handling escalated incidents from the analysts. This role involves in-depth analysis, incident response coordination, mentoring of analysts, real time security monitoring, threat hunting and ensuring compliance with the Security policies and standards.

Skills and Experience:

• Experience: 10 plus years of experience in cybersecurity, particularly in security operations.
• Cybersecurity Expertise: Advanced knowledge of cybersecurity threats, vulnerabilities, malware investigation and incident response, evidence collection, communication and documentation
• Technical Proficiency: Proficiency in operational support, Security Architecture of SIEM, SOAR, EDR, XDR, Firewalls and other security tools.
• Analytical Skills: Strong analytical, investigative, and problem-solving skills.
• Forensic Analysis: Experience with forensic analysis and malware analysis.
• Certifications: Relevant certifications such as CFCE, CISSP, GCIH, or GCIA.
• Language Skills: Excellent verbal and writing skills in English.
• On Call Support: Rotational on call support for high severity incidents in a 24x7 environment.

Roles and Responsibilities

• Incident Analysis: Conduct detailed analysis of escalated security incidents. Coordination of end-to-end Security Incident management on escalated incidents, ensuring timely updates to stakeholders and efficient resolution of incidents.
• Incident Response: Lead the development and implementation of incident response plans.
• Threat Monitoring and Analysis: Monitor security alerts and events using SIEM and other security tools. Lead and coordinate proactive threat hunting to identify potential risks and vulnerabilities. Analyze and integrate threat intelligence feeds to the platforms and stay updated on emerging threats.
• Mentorship: Mentor and provide guidance to Security analysts on incident handling. Foster a culture of continuous improvement and learning.
• Forensic Analysis: Perform forensic analysis and malware analysis of Computers, Cloud, Networks, Mobile devices and other digital medias
• Architecture Design: Develop and refine architecture of Security Tools and platforms
• Collaboration: Creatively solve problems collaborating with SecOps, Platform, Delivery, IT and Engineering team members.

Qualifications:

• Education: Bachelor’s degree in computer science, Cybersecurity, or a related field.
• Certifications: Advanced certifications such as CISSP, OSCP, GCIH, GSOC or GCIA.
• Incident Response Experience: 7+ years of experience in Cyber Incident response and investigations.
• Leadership Skills: Strong leadership and communication skills.

Why Smarsh?

Smarsh hires lifelong learners with a passion for innovating with purpose, humility and humor. Collaboration is at the heart of everything we do. We work closely with the most popular communications platforms and the world’s leading cloud infrastructure platforms. We use the latest in AI/ML technology to help our customers break new ground at scale. We are a global organization that values diversity, and we believe that providing opportunities for everyone to be their authentic self is key to our success. Smarsh leadership, culture, and commitment to developing our people have all garnered Comparably.com Best Places to Work Awards. Come join us and find out what the best work of your career looks like

Company Description

Smarsh is the leader in Communications Compliance, Archiving, and Analytics. We provide compliance across the broadest set of communications channels with insights on what’s being captured. Smarsh customers manage over 500 million daily conversations across 80 channels - and it’s still growing. Our customers include the top 10 U.S., top 8 European, top 5 Canadian, and top 3 Asian banks.

At Smash, we’ve been helping our customers manage new forms of communication since 1998. We work closely with regulators including the SEC, FINRA, IIROC, PRA, FCA, and with our customers, to ensure that they understand the capabilities of today’s technology and that our platform meets their most stringent requirements.

Job Description:

The Senior Security Operations Analyst is an expert-level role in the Security Operations Center (SOC), responsible for handling the most complex and critical security incidents. This role involves advanced threat analysis, incident response, and proactive threat hunting. The Senior Security Operations Analyst also contributes to the strategic improvement of the organization's security posture.

Skills and Experience :

• Experience: 8 plus years of experience in cybersecurity, particularly in security operations.
• Cybersecurity Expertise: Advanced knowledge of cybersecurity threats, vulnerabilities, malware investigation and incident response, evidence collection, communication and documentation
• Technical Proficiency: Proficiency in operational support, Security Architecture of SIEM, SOAR, EDR, XDR, Firewalls and other security tools.
• Analytical Skills: Strong analytical, investigative, and problem-solving skills.
• Forensic Analysis: Experience with forensic analysis and malware analysis.
• Certifications: Relevant certifications such as CFCE, CISSP, GCIH, or GCIA.
• Language Skills: Excellent verbal and writing skills in English.
• On Call Support: Rotational on call support for high severity incidents in a 24x7 environment.

Typical Tasks:

• Incident Analysis: Conduct detailed analysis of escalated security incidents. Coordination of end-to-end Security Incident management on escalated incidents, ensuring timely updates to stakeholders and efficient resolution of incidents.
• Incident Response: Lead the development and implementation of incident response plans.
• Threat Monitoring and Analysis: Monitor security alerts and events using SIEM and other security tools. Lead and coordinate proactive threat hunting to identify potential risks and vulnerabilities. Analyze and integrate threat intelligence feeds to the platforms and stay updated on emerging threats.
• Mentorship: Mentor and provide guidance to Security analysts on incident handling. Foster a culture of continuous improvement and learning.
• Forensic Analysis: Perform forensic analysis and malware analysis of Computers, Cloud, Networks, Mobile devices and other digital medias
• Architecture Design: Develop and refine architecture of Security Tools and platforms
• Collaboration: Creatively solve problems collaborating with SecOps, Platform, Delivery, IT and Engineering team members.

Qualifications:

• Education: Bachelor’s degree in computer science, Cybersecurity, or a related field.
• Certifications: Advanced certifications such as CISSP, OSCP, GCIH, GSOC or GCIA.
• Incident Response Experience: 8+ years of experience in Cyber Incident response and investigations.
• Leadership Skills: Strong leadership and communication skills.

Why Smarsh?

Smarsh hires lifelong learners with a passion for innovating with purpose, humility and humour. Collaboration is at the heart of everything we do. We work closely with the most popular communications platforms and the world’s leading cloud infrastructure platforms. We use the latest in AI/ML technology to help our customers break new ground at scale. We are a global organization that values diversity, and we believe that providing opportunities for everyone to be their authentic self is key to our success. Smarsh leadership, culture, and commitment to developing our people have all garnered Comparably.com Best Places to Work Awards. Come join us and find out what the best work of your career looks like.

Our client is looking for a highly motivated and experienced Lead Security Operations Analyst to join their fully remote cybersecurity team. In this critical role, you will be responsible for overseeing the day-to-day operations of the Security Operations Center (SOC), ensuring the protection of our organization's digital assets against evolving threats. You will lead a team of security analysts, providing guidance, mentorship, and technical expertise. Your primary focus will be on threat detection, incident response, vulnerability management, and security monitoring. This position requires a deep understanding of network security, endpoint security, cloud security, and various security technologies such as SIEM, IDS/IPS, EDR, and firewalls.

You will develop and refine security playbooks, standard operating procedures (SOPs), and incident response plans. Your responsibilities will include analyzing security alerts, investigating potential security incidents, performing forensic analysis when necessary, and coordinating remediation efforts. The Lead Security Operations Analyst will also play a key role in threat hunting, proactively searching for malicious activities that may have evaded existing security controls. You will contribute to the continuous improvement of security monitoring capabilities, recommending and implementing new tools and techniques. Collaboration with IT infrastructure, application development, and other teams to address security vulnerabilities and incidents will be paramount. This is an excellent opportunity for a seasoned security professional to take on leadership responsibilities and make a significant impact in a fully remote environment, from Nagpur, Maharashtra, IN , helping to safeguard our global operations. You will be at the forefront of defending against cyber threats, ensuring the integrity and confidentiality of our sensitive data.

Key Responsibilities:

• Lead and mentor a team of Security Operations Analysts.
• Oversee the 24/7 monitoring of security alerts and logs using SIEM and other security tools.
• Manage and coordinate incident response activities, including containment, eradication, and recovery.
• Conduct in-depth investigations of security incidents and perform forensic analysis.
• Develop and maintain security playbooks, SOPs, and incident response plans.
• Proactively hunt for threats and vulnerabilities within the network and systems.
• Assess and manage security risks and vulnerabilities.
• Recommend and implement security enhancements and technologies.
• Collaborate with cross-functional teams to address security concerns.
• Stay current with the latest cybersecurity threats, trends, and technologies.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 5+ years of experience in cybersecurity operations, incident response, or threat analysis.
• Proven experience in leading or managing a security team.
• Strong understanding of network protocols, security principles, and attack vectors.
• Hands-on experience with SIEM, EDR, IDS/IPS, firewalls, and other security technologies.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and interpersonal skills.
• Relevant security certifications (e.g., CISSP, GCIH, CEH) are highly desirable.

Our client is seeking a seasoned Lead Security Operations Analyst to spearhead their information security efforts in **Kochi, Kerala, IN**. This is a critical role responsible for safeguarding the organization's digital assets against evolving cyber threats. As the Lead Analyst, you will manage and mentor a team of security professionals, oversee the day-to-day operations of the Security Operations Center (SOC), and develop strategies to enhance our defensive posture. Your responsibilities will include monitoring security alerts, investigating security incidents, performing forensic analysis, and coordinating incident response activities. You will also play a key role in developing and refining security policies, procedures, and best practices. This role requires a deep understanding of various security technologies, including SIEM, IDS/IPS, endpoint detection and response (EDR) solutions, and network security protocols. You will be instrumental in threat hunting, vulnerability assessment, and penetration testing, working collaboratively with IT and development teams to integrate security into all aspects of the business. The ideal candidate will possess exceptional analytical skills, a strong aptitude for identifying patterns and anomalies, and the ability to communicate complex technical information clearly to both technical and non-technical audiences. Leadership experience is essential, as you will be guiding the SOC team, fostering a culture of continuous learning, and ensuring the team's readiness to respond to incidents effectively. You will be involved in developing and delivering security awareness training programs for employees. Additionally, this role will require you to stay current with the latest threat intelligence, attack vectors, and industry trends to proactively adapt our security measures. This hybrid role offers the flexibility to work remotely for a portion of the week, combined with essential on-site collaboration. We are committed to providing a secure environment for our employees and clients and seek a leader who shares this dedication. This is an opportunity to make a significant impact on the security and resilience of our organization.

Responsibilities:

• Lead and manage the Security Operations Center (SOC) team.
• Oversee the detection, analysis, and response to security incidents.
• Develop and implement security monitoring and alert systems.
• Conduct threat intelligence gathering and analysis.
• Perform forensic investigations and root cause analysis of security breaches.
• Develop and refine security policies, standards, and procedures.
• Collaborate with IT and engineering teams on security architecture and implementation.
• Manage vulnerability assessment and penetration testing activities.
• Provide security awareness training and education to staff.
• Stay updated on emerging threats and security technologies.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.
• Minimum of 7 years of experience in information security, with at least 3 years in a lead or supervisory role.
• In-depth knowledge of security frameworks (e.g., NIST, ISO 27001).
• Proficiency with SIEM, IDS/IPS, EDR, and firewall technologies.
• Strong understanding of networking protocols and TCP/IP.
• Experience with incident response and digital forensics.
• Excellent leadership, communication, and analytical skills.
• Relevant security certifications (e.g., CISSP, CISM, GIAC) are highly desirable.

IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboarding seamless.

Our clients include HDFC Bank, Zomato, Amazon, PhonePe, Paytm, HUL and many others. With more than 13+ years of experience and 2 million verifications per day, we are pioneers in this industry.

IDfy’s three platforms- OnboardIQ, OneRisk, and Privy - come together to form one seamless solution enabling trust.

Onboard IQ

An onboarding platform that accelerates growth with frictionless omni-channel onboarding, while mitigating fraud and improving quality of account.

OneRisk

A fraud and risk management platform to mitigate financial, legal, and reputational risks and avoid losses with proactive fraud prevention. It covers individual risk, entity risk, and asset risk.

Privy

A privacy and data governance platform to ensure DPDPA compliance through trust and privacy governance suite and avoid monetary and reputational loss.

We are the perfect match if you.

• Have 10+ years of experience in Information Security, with a strong focus on Governance, Risk, Compliance, and Data Privacy.
• Are well-versed with frameworks and regulations such as ISO 27001:2022, SOC 2 Type II, India's DPDPA, RBI regulations (e.g. V-CIP), and sector-specific compliance requirements like SAR and data localization.
• Enjoy building trust with customers by clearly articulating security controls, data handling practices, and participating in customer audits.
• Are confident reviewing client MSAs, handling TPRM requests, and aligning contractual obligations with internal security practices.
• Have a solid understanding of cloud security fundamentals and how compliance controls are mapped in cloud environments.
• Know how to balance compliance needs with business agility, and can translate complex regulatory requirements into practical, actionable controls.
• Thrive in cross-functional environments, working closely with internal teams (Legal, Product, Engineering, etc.) to get things done.

Here’s what your day would look like.

• Lead the GRC function and own our compliance roadmap (ISO, SOC 2, etc.).
• Interpret new regulations (e.g. DPDPA, RBI advisories) and drive necessary security and privacy program updates.
• Represent security in customer calls, audits, and RFPs helping build client trust and confidence.
• Own internal risk assessments, policy governance, and third-party risk management workflows.
• Review and negotiate security-related clauses in customer contracts and vendor agreements.
• Work with internal teams to ensure controls are implemented, monitored, and improved over time.
• Collaborate with engineering, cloud, and DevSecOps teams to ensure security solutions align with compliance goals.
• Regularly update senior leadership and business units on compliance posture, risks, and mitigation plans.

Technical Skills

• Deep understanding of security frameworks: ISO 27001:2022, SOC 2 Type II, DPDPA, SAR, RBI circulars (esp. for financial services), and data localization norms.
• Familiarity with privacy impact assessments, DPIAs, and data retention practices.
• Hands-on experience with internal audits, policy development, and third-party risk management.
• Understanding of modern cloud architectures and associated compliance controls (GCP, AWS, Azure).
• Exposure to security tools (SIEM, DLP, WAF2, GRC platforms, etc.) and how they support audit/compliance needs.
• Ability to interpret MSA/contractual security clauses and align them with internal controls.

Soft Skills

• Strong communication skills able to simplify complex security and compliance topics for non-technical stakeholders.
• Confident in customer-facing discussions and audits; builds trust through clear and honest dialogue.
• Comfortable working cross-functionally and influencing without authority.
• Detail-oriented, organized, and able to manage multiple priorities in a fast-paced environment.
• Collaborative mindset with a bias toward problem-solving and execution.