Oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.
Select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.
Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).
Partner with engineering teams to interpret findings and "ease the fix," providing patches, code snippets, or architectural advice to resolve issues quickly.
Define and maintain rigorous security guidelines and best practices for developers and system administrators.
Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.

6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
Industry certifications such as CISSP, CCSP, OSCP, or cloud-specific security certifications.
Strong Infrastructure as Code (IaC) experience with Terraform or Ansible.
Experience in offensive security (Penetration Testing) to better understand attacker mindsets.
Prior experience securing large-scale AI or Machine Learning infrastructure.

CyberSecurity Team Lead – Infrastructure and Application

Key skills