Aeries Technology

Position/Title: Senior Information Security Manager

Department: Information Technology

Employment Type: Full-time

Location: Bangalore/Hyderabad

Shifts: 11:00AM to 8:00PM (candidate should be flexible to work as per business requirement)

About Aeries

Aeries is a global services company providing technology, business Founded in 2012, Aeries Technology is a Nasdaq listed global professional services and consulting partner, headquartered in Mumbai, India, with centers in the USA, Mexico, Singapore, and Dubai. We provide mid-size technology companies with the right mix of deep vertical specialty, functional expertise, and the right systems & solutions to scale, optimize and transform their business operations with unique customized engagement models. Aeries is Great Place to Work certified by GPTW India, reflecting our commitment to fostering a positive and inclusive workplace culture for our employees.

For more information, log on to http://www.aeriestechnology.com

Aeries is looking for an experienced Senior Information Security Manager to join our Infrastructure & Information Security Team. The right individual will partner and collaborate with teammates cross-functionally to understand needs, present options, and facilitate the selection, planning, building, and delivery of solutions across our Info Sec portfolio.

Job Summary: We are seeking an experienced and dedicated Information Security Manager to lead our IT Security team and oversee the delivery of security services to our clients in the US and UK. The ideal candidate should possess a strong background in IT security practices, have a proven track record of managing security teams, and be adept at handling client relationships. This role involves ensuring the confidentiality, integrity, and availability of our clients' data and systems while adhering to industry standards and best practices.

Responsibilities:

1. Client Engagement: Serve as the primary point of contact for US and UK clients regarding all information security matters. Understand their security needs, provide expert advice, and ensure high levels of client satisfaction.
2. Security Strategy and Policy: Develop and implement comprehensive information security strategies around tools, and industry standard procedures tailored to meet the requirements of our clients.
3. Team Management: Lead and mentor the IT Security team, providing guidance, performance evaluations, and fostering professional development to ensure a high-performing and motivated team.
4. Security Operations: Oversee day-to-day security operations, including monitoring and responding to security incidents, conducting security assessments, and implementing controls to safeguard client assets. Act as the interface between offshore operations and Client Senior Stakeholders.
5. Security Compliance: Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, SOC, ISO 27001) in respective regions.
6. Vendor Management: Manage relationships with external security service providers and vendors, ensuring their services meet the expected quality and compliance standards.
7. Security Metrics and Reporting: Establish key security performance metrics, regularly monitor and report on security posture to senior management and clients.
8. Continuous Improvement: Stay updated with the latest security trends, technologies, and threats. Propose and implement improvements to security practices based on industry best practices.

Qualifications and Experience:

• Bachelor's degree in Computer Science, Information Technology, or a related field. A Master's degree is a plus.
• Professional certifications such as CISSP, CISM, or equivalent.
• At least 10+ years of experience in IT security management, with a proven track record of managing teams and delivering security services to US and UK clients.
• Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, CIS, ISO 27001).
• Experience with security technologies, such as firewalls, IDS/IPS, Microsoft Sentinel SIEM, EDR and endpoint protection.
• Excellent communication and interpersonal skills to effectively engage with clients and internal stakeholders.
• Demonstrated ability to analyse complex security issues, devise solutions, and implement effective security controls.
• Strong leadership and project management skills to drive initiatives and meet deliverables.

The Information Security Manager will play a critical role in ensuring the security and confidentiality of our client’s data and systems. They will lead a skilled team, stay abreast of the ever-changing security landscape, and apply their expertise to protect our clients and enhance our security practices.

The Job responsibilities of the candidate shall include but not limited to the Job Description & to perform any other tasks/functions as required by the Company.

As an Enterprise Security Architect you will join a growing organization to lead a modern enterprise security program. In this role the Architect will have responsibility for identifying, defining, developing, leading security technology strategy across a broad portfolio of IAM, Cloud, End Point, Network, Web security and related technology systems, and the assessment of new and emerging identity technologies at the very large enterprise scale.

As a senior member of the team you will engage and partner with senior leaders across the organization leveraging your extensive background in (managing / delivering / implementing / architecting) security technology combined with expertise in organizational and cross-functional communication to develop strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position forward looking identity governance and security enhancements

• Responsible for defining an architectural vision and architecture for large complex solutions, which aligns with the enterprise architecture strategy, technology and platform choices

• Describes the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining non-functional requirements and architectural runway to support new epics/features and expand into new opportunities

• Ensures the solution is fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions

• Contributes to best practices, standard templates, and the architecture roadmap for defined domains.

• Creates endpoint/host, workplace productivity security reference architecture and design patterns for reusability.

• Contributes in the creation of the architecture roadmap of defined domains (Business, Application, Data and Technology) in support of the product roadmap

• Contributes to the development of best practices including standardized templates

• Works across business and technology to create the solution intent and architectural vision for large complex solutions and evolves it based on an emerging backlog

• Works with Product Manager/Owner to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities

• Clarifies the architecture for the development teams to support implementation, and provides solution options to resolve any architectural impediments

• Performs design and code reviews to ensure all non-functional requirements for a solution are sufficiently met (e.g. security, performance, maintainability, scalability, usability, and reliability)

• The platform security architect must interpret business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers.

• Develop blueprints and procedures to effectively secure company data against accidental or unauthorized modification, destruction or disclosure.

• Create and define the security architectures and roadmaps encompassing cloud architecture, access management, and monitoring.

• Design and develop data security architectures for cloud and cloud/hybrid-based systems.

• Align architectural design technical controls and solutions to industry best practices and guidelines (e.g., NIST CSF, CSA, CIS, OWASP)

What are we looking for?

We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.

Requirements:

• 10+ years of hands-on experience with scoping, sizing, designing, architecting & building IAM solutions across various technologies, or demonstrated ability to meet job requirements through comparable work experience.

• Expert level knowledge of authentication/authorization standards, protocols, and frameworks such as FIDO, OpenID, SAML, OAuth, JWT, CA, X.509, MTLS, etc.

• Technical expertise and experience with Microsoft MFA, SailPoint, CyberArk, ForgeRock, Okta, Ping, Active Directory, Azure Active Directory, AWS, Google Cloud Platform, Microsoft Azure, and IDM integration across domains

• Solid understanding of Cloud concepts and hands on knowledge on Azure/AD or other cloud identity environments.

• Experience designing and implementing security services and tools applied to GCP, Azure and AWS

• Expertise with Data Loss Prevention and CASB strategies and solutions supporting security of critical SaaS solutions such as Office 365, etc.

• Experience with Hybrid cloud architectures and designs

• Must have experience with Internet Application Hosting architectures, best practices and related technologies to effectively protect externally facing applications

• Experience with DevSecOps process, Container technologies (Docker, Kubernetes), API Gateways, and other common web application technologies is preferred

• Strong knowledge of enterprise security concepts/frameworks and products, secure design principles and best practices

• Strong verbal and writing skills to develop technical documentation and presentations

• Experience in leading technical architecture and security design discussions

• Experience managing multiple multi-level stakeholder relationships

• Bachelors in Computer Science, Computer Engineering or related field

“Such other task that Company may assign you time to time”.

Position/Title: Senior - Talent Acquisition

Department: Human Resources

Employment Type: Full-time

Location: Mumbai

Shifts (if any): 10:00 AM - 7:00 PM (candidate should be flexible to work as per business requirement)

Experience: 5-10 years

This position is on 3rd party payroll.

About Aeries:

Aeries is a global services company providing technology, business Founded in 2012, Aeries Technology is a Nasdaq listed global professional services and consulting partner, headquartered in Mumbai, India, with centers in the USA, Mexico, Singapore, and Dubai. We provide mid-size technology companies with the right mix of deep vertical specialty, functional expertise, and the right systems & solutions to scale, optimize and transform their business operations with unique customized engagement models. Aeries is Great Place to Work certified by GPTW India, reflecting our commitment to fostering a positive and inclusive workplace culture for our employees.

For more information, log on to http://www.aeriestechnology.com 

Key Responsibilities:

1.      Non and IT Recruitment Strategy:

·  Develop a specialized recruitment strategy to attract top talent in the Non IT and IT sectors.

·  Stay updated on the latest IT and NON IT  developments to anticipate hiring needs.

2.       Candidate Sourcing and Engagement:

·  Identify potential candidates through various channels including job portals, networking events, and referrals.

·  Engage potential candidates with an understanding of technical requirements such as SAP, Oracle, cloud technologies, programming languages, and more.

3.       Stakeholder Collaboration:

·  Work closely with IT and Non IT department heads to define precise hiring needs and specifications.

4.       Candidate Assessment:

·  Conduct preliminary screening and technical assessments, ensuring candidates meet the technical and cultural fit for roles.

·  Coordinate technical tests and interviews with the respective teams.

5.       Market Intelligence:

·  Stay informed about market trends, competitive salaries, and benefits to attract and retain the best talent in the ERP and IT sectors.

6.       Process and Metrics Management:

·  Continually refine recruitment processes to enhance efficiency and effectiveness.

7.       Candidate Experience:

·  Ensure a seamless experience for candidates from the initial approach through the onboarding process.

·  Address any specific concerns related to ERP and IT roles.

Desired Minimum Qualification:

·  Bachelor’s degree

·  A minimum of [5 to 10] years of experience in talent acquisition with a focus on Non-IT and IT roles

·  IT technologies.

·  Proven track record in hiring for technical roles.

The Job responsibilities of the candidate shall include but not limited to the Job Description & to perform any other tasks/functions as required by the Company.