Technical Lead - Product Security

Job Description

Job Title : Technical Lead – Product Security

Location : Chennai

Experience : 5 Years

Role Overview

We are seeking a highly skilled and experienced Technical Lead – Product Security to lead and strengthen our product security initiatives. The ideal candidate will play a pivotal role in embedding security throughout the software development lifecycle, driving security assessments, implementing best practices, and mentoring teams to build secure products. This position requires a balance of technical expertise, leadership ability, and a strong understanding of modern cybersecurity challenges.

Key Responsibilities

Lead the design, implementation, and maintenance of product security strategies across the organization.

Conduct and oversee threat modeling, vulnerability assessments, penetration testing, and risk evaluations .

Collaborate with engineering, DevOps, and product teams to integrate security into CI / CD pipelines and development workflows .

Monitor, analyze, and respond to security incidents using SIEM tools and endpoint protection solutions.

Drive security governance by aligning practices with frameworks such as NIST, ISO 27001, and industry regulations .

Define and enforce secure coding standards, security controls, and cloud security best practices (AWS, Azure, GCP).

Mentor and guide engineers on product security practices, including secure design reviews and code reviews.

Stay updated with emerging threats, attack techniques, and security technologies; evaluate and implement innovative solutions.

Work with stakeholders to ensure compliance with relevant data protection, privacy, and regulatory requirements.

Required Qualifications

Bachelor’s degree in Computer Science, Information Security, or a related field .

Proven experience in cybersecurity roles such as Security Analyst, Incident Responder, or Product Security Engineer.

Strong knowledge of cybersecurity frameworks (NIST, ISO 27001) and compliance requirements.

Hands-on experience with SIEM tools (e.g., Splunk, QRadar, LogRhythm) and endpoint security solutions .

Proficiency in vulnerability management, penetration testing, and risk analysis .

Strong expertise in cloud security (AWS, Azure, GCP).

Preferred Qualifications

Industry certifications such as CISSP, CEH, CISM, or OSCP .

Experience with DevSecOps, CI / CD pipeline security, and secure software development practices .

Familiarity with Zero Trust architecture, EDR / XDR solutions, and threat intelligence platforms .

Excellent problem-solving, communication, and documentation skills .

Ability to work independently as well as collaboratively in cross-functional teams.

Skills Required

Deep understanding of application, network, and cloud security principles .

Strong leadership and mentoring abilities to guide security initiatives across teams.

Practical knowledge of programming / scripting languages (Python, Java, C / C++, etc.) for security automation.

Strong analytical and critical-thinking skills with attention to detail.

Capability to handle multiple projects under tight deadlines while maintaining security quality.

Requirements

Candidates must have experience in handling calls in a professional environment.