Assistant Vice President - Cloud & Digital Security

Title : AVP Cloud and Digital Security.

Location : PAN India.

Duration : 1 YEAR CONTRACT and REMOTE.

Reports To : VP Head of Cloud and Digital Security.

We are seeking an experienced and visionary AVP Cloud and Digital Security to lead the design, implementation, and governance of secure multi-cloud environments.

As a key member of the second line of defense (LOD-2), you will play a pivotal role in shaping our cloud security strategy, ensuring regulatory compliance, and fostering a security-first culture across the Responsibilities

• Cloud Architecture & Security : Design and implement secure architectures across AWS, Azure, and GCP, integrating cloud-native security controls to protect critical assets.
• Cloud Governance : Develop and maintain cloud security policies, frameworks, and standards aligned with ISO 27001, NIST, CSA CCM and other regulatory requirements.
• Risk & Compliance : Lead cloud threat modeling, risk assessments, and vulnerability management programs while driving adherence to GDPR, HIPAA, PCI-DSS and other compliance mandates.
• DevSecOps & Automation : Embed security into CI / CD pipelines, leverage IaC tools like Terraform / CloudFormation, and promote secure coding practices across development teams.
• Security Operations : Oversee monitoring, SIEM / SOAR integrations, and incident response processes to strengthen detection and response capabilities.
• Leadership & Collaboration : Act as the primary liaison for cloud security governance, mentor junior team members, and collaborate with technology, risk, and compliance teams to align security strategy with business goals.
• Strategic Roadmap : Define and execute the cloud security roadmap, staying ahead of emerging threats and recommending proactive measures.
• Executive Reporting : Deliver regular reporting on cloud security posture, risks, and mitigation strategies to senior & Skills : 1215 years in cybersecurity, with at least 8+ years in cloud security architecture & governance (preferably in Expertise :
• Strong knowledge of multi-cloud security (AWS, Azure, GCP), CNAPP, SSPM, KSPM, and SASE.
• Proficiency with Terraform, CloudFormation, Docker, Kubernetes, and cloud security automation.
• Hands-on experience with DevSecOps, CI / CD security integration, and threat & Compliance : Proven track record implementing ISO 27001, NIST, PCI-DSS, GDPR, HIPAA : Ability to lead cross-functional teams, influence stakeholders, and align security initiatives with business : Preferred CISSP, CCSP, CISM, CRISC, AWS Security Specialist, Azure Security Engineer, Google Cloud Security Engineer, CKA, DevSecOps Practitioner.

(ref : hirist.tech)