Apply now »

Associate Lead Consultant - Security Job

Date:  Jul 13, 2026
Job Requisition Id:  65020
Location: 

Bangalore, KA, IN Hyderabad, TG, IN Pune, MH, IN Hyderabad, IN Pune, IN Bangalore, KA, IN

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

 

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

 

We are looking forward to hire GRC Professionals in the following areas :

 

Job Title: Security Manager (Data Security & Cyber Defense)
Location: Bangalore, Pune
Experience Range: 10–14 Years

Role Overview

 


We are seeking a highly experienced and proactive Security Manager to lead enterprise-level cybersecurity initiatives, focusing on data security, threat hunting, SOC operations, GRC, and governance. This role is responsible for designing, implementing, and managing security strategies, driving incident response, and ensuring alignment with organizational risk and compliance frameworks.

Key Responsibilities

 


1. Security Operations & Incident Response
Lead and manage Security Operations Center (SOC) activities including monitoring, detection, response, and mitigation of cybersecurity threats.
Develop, implement, and continually enhance incident response plans and playbooks.
Oversee investigation and resolution of security incidents, ensuring timely closure and root cause analysis.
Coordinate with cross-functional teams for effective incident containment and recovery.

2. Threat Hunting & Detection Engineering

 


Drive proactive threat hunting activities using advanced tools and techniques to detect hidden threats.
Develop and refine detection use cases, correlation rules, and alerts across SIEM/EDR platforms.
Analyze threat intelligence feeds and translate them into actionable defense strategies.

3. Data Security & Endpoint Protection

 


Implement and manage data protection frameworks, including DLP, encryption, and data classification.
Oversee deployment and optimization of EDR/XDR solutions.
Ensure protection of sensitive data across endpoints, networks, and cloud environments.

4. Governance, Risk & Compliance (GRC)

 


Establish and maintain security governance frameworks, policies, and standards aligned with industry regulations (ISO 27001, NIST, SOC2, etc.).
Conduct risk assessments, vulnerability assessments, and ensure remediation tracking.
Support internal and external audits, ensuring compliance with regulatory and organizational standards.

5. Security Governance & Strategy

 


Define and implement enterprise security strategy and roadmap.
Drive security awareness and training programs across the organization.
Collaborate with leadership to align security initiatives with business objectives.

6. Change Management & Process Control

 


Integrate security controls within change management processes.
Review and approve infrastructure/application changes from a security perspective.
Ensure minimal risk introduction during system changes and deployments.

7. Stakeholder Management & Reporting

 


Engage with senior stakeholders to provide security posture updates, incident reports, and risk insights.
Create dashboards and executive-level reports on key security metrics and KPIs.
Interface with third-party vendors for security solutions and services.


Required Skills & Qualifications

 


Educational Qualification

 

Bachelor’s or Master’s degree in Computer Science, Information Security, or related field

 

Experience & Expertise

 

10–14 years of experience in Cybersecurity / Information Security
Strong experience in:

SOC operations and incident response
Threat hunting and detection engineering
Data security and DLP solutions
EDR/XDR platforms (e.g., CrowdStrike, Defender, Carbon Black)
SIEM tools (Splunk, QRadar, Sentinel, etc.)
GRC frameworks and compliance standards

 

Technical Skills

 

Hands-on experience with:
Threat intelligence platforms
Log analysis and correlation
Network security tools (IDS/IPS, Firewalls, WAF)
Cloud security (AWS/Azure/GCP) – preferred

 

Strong understanding of:
MITRE ATT&CK framework
Cyber kill chain methodology
Vulnerability management tools

 

Certifications (Preferred)

 

CISSP, CISM, CISA, CEH, or equivalent
GIAC certifications (GCIA, GCIH) are a plus

 

Soft Skills

 


Strong leadership and team management capabilities
Excellent analytical and problem-solving skills
Effective communication with technical and non-technical stakeholders
Ability to work under pressure and handle critical incidents

Key Success Metrics

 


Reduction in incident response time and security breaches
Improved threat detection accuracy and response effectiveness
Compliance audit success rate
Strengthened security posture and risk mitigation

 

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

 

Our Hyperlearning workplace is grounded upon four principles

  • Flexible work arrangements, Free spirit, and emotional positivity
  • Agile self-determination, trust, transparency, and open collaboration
  • All Support needed for the realization of business goals,
  • Stable employment with a great atmosphere and ethical corporate culture

Apply now »