Assistant Vice President, IT Security Engineering

Position Summary
We are looking for a highly experienced IT Security Engineering Lead with over 12 years of expertise in cybersecurity strategy, security engineering across different technology domains, and a deep understanding of the latest cybersecurity trends. This leadership role demands strong critical and logical thinking, excellent stakeholder management, and the ability to drive meaningful change across the organization’s security landscape.

Key Responsibilities
•    Lead the design, engineering, and optimization of security controls for applications, platform, and cloud environments.
•    Develop and execute cybersecurity strategies aligned with business objectives and compliance requirements.
•    Stay abreast of emerging threats, technologies, and industry best practices to continuously enhance the organization’s security posture.
•    Collaborate with application development, infrastructure, and operations teams to embed security into system architecture and lifecycle.
•    Drive security initiatives and transformation programs, ensuring alignment with business objectives and risk requirements.
•    Conduct ad-hoc security assessments, threat modeling, and security architecture reviews.
•    Support incident response planning and execution, including post-mortem analysis and remediation.
•    Manage relationships with internal and external stakeholders, including client, auditors, and vendors.

Required Qualifications
•    Minimum 12 years of experience in cybersecurity, with a strong focus on security engineering and strategy.
•    Proven experience in securing both application and platform environments (on-premises and cloud).
•    Deep understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, OWASP, CIS).
•    Strong leadership and team management skills.
•    Excellent critical thinking, analytical, and problem-solving abilities.
•    Effective communication and stakeholder engagement skills.
•    Demonstrated ability to drive change and influence across technical and business teams.
•    Relevant certifications such as CISSP, CISM, CCSP, or equivalent.
 
Other Preferred Attributes
•    Experience with DevSecOps and secure SDLC practices is advantage.
•    Familiarity with cloud platforms and their native security services.
•    Hands-on experience with the design and implementation of security tools such as SIEM, EDR, vulnerability scanners, and IAM solutions.
•    Strategic mindset with the ability to balance technical depth and business impact.