Necurity Solutions Network Security Pvt Ltd
Website:
necurity.com
Job details:
Job Title: Security Lead
Location: Chennai
Employment Type: Full-Time
Experience Required: 5–8 Years
Salary Range: ₹10 – ₹12 LPA
Job Summary
We are looking for an experienced Security Lead to oversee the organisation’s information security strategy, governance, and operational security controls. The candidate will be responsible for implementing security frameworks, managing risk, ensuring compliance, and strengthening the overall security posture across applications, infrastructure, and cloud environments.
The ideal candidate should have strong experience in cybersecurity operations, risk management, security architecture, and incident response, along with the ability to collaborate with cross-functional teams to ensure the organisation's security objectives are met.
Key Roles and Responsibilities
1. Strategy, Governance & Risk
* Implement the enterprise security strategy and ensure alignment across departmental projects.
* Draft and update the security policy and standards library for executive approval.
* Manage the day-to-day risk register; monitor KRIs/KPIs against established risk tolerance.
* Evaluate security exception requests and propose specific compensating controls to leadership.
* Consolidate data for security posture reporting and identify areas for tactical investment.
2. Identity & Access Management
* Manage the deployment and maintenance of MFA, privileged access (PAM), and least-privilege tools.
* Enforce device-trust and secure access protocols for workforce members and external partners.
3. Data Protection & Privacy
* Operationalise data classification and handling standards across business units.
* Technical Validation: Ensure encryption baselines and retention policies are correctly applied in production environments.
* Monitor privacy and regulatory compliance, coordinating with legal/privacy teams for routine audits.
4. Cloud, Application & Infrastructure Security
* Apply security guardrails for cloud and on-prem environments (monitoring configs, logs, and network segregation).
* Integrate secure SDLC tools, including secret management, automated code scanning, and security gates.
* Review and design security architecture patterns for new systems to ensure they meet corporate standards.
5. Incident Detection & Response
* Maintain incident response playbooks and lead the initial response to security events.
* Facilitate post-incident root cause analysis and track the completion of corrective actions.
* Coordinate backup/DR testing and validate that recovery processes meet RTO/RPO targets.
6. Third-Party Risk Management
* Conduct vendor security due diligence and technical assessments during onboarding.
* Verify that contractual security clauses are being met by active SaaS providers and third parties.
7. Security Awareness & Training
* Execute the security awareness program, including phishing simulations and employee training.
* Coordinate internal and external audits; track remediation plans to ensure findings are closed on time.
8. Metrics, Reporting & Continuous Improvement
* Maintain security dashboards and risk heatmaps with real-time data.
* Execute prioritized remediation plans and provide status updates on high-risk findings to senior management.
Required Skills
- Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, or CIS Controls.
- Experience with identity and access management (IAM), MFA, and PAM solutions.
- Understanding of cloud security (AWS / Azure / GCP).
- Experience in security monitoring, incident response, and vulnerability management.
- Familiarity with security tools such as SIEM, EDR, and vulnerability scanners.
- Strong analytical, problem-solving, and leadership skills.
- Excellent communication and stakeholder management abilities.
Click on Apply to know more.