Cyber Security Architect

Medanta Overview :

Over the past 14 years, Medanta has created an unrivalled impact in delivering world class multi-speciality care to patients in India. We have hospitals in Gurgaon, Lucknow, Patna, Indore and Ranchi. In addition we have clinics in Defence Colony (South Delhi), Cybercity & Subhash Chowk (Gurgaon), at the Delhi Airport. Medanta is constantly growing and has also ventured in Retail vertical through Diagnostics (Laboratory Services) and Pharmacies. We also have also launched homecare services.We further plan to scale up existing facilities and expand into a few more geographical areas and also identify new avenues (Academics - Medical College) within the Healthcare eco-system.

As we continue to scale and grow into new geographies, explore innovative methods of healthcare delivery, we are looking to hire exceptionally motivated and talented professionals to join our team and be partners in this exciting journey.

Key Responsibilities:

1)Design and implement security standards during product development

Guide engineering teams in making security-informed decisions for the design and architecture of infrastructure, systems, and applications.

Collaborate with technical leads to ensure that security best practices are integrated into application development, network infrastructure, and cloud systems.

2)Cloud Security & Risk Management:

Implement industry-leading practices for mitigating cyber risks and cloud security threats.

Conduct security assessments of cloud platforms/environments using frameworks such as ISO, CSA-CSM, and NIST, ensuring compliance with industry standards.

3)Vulnerability & Threat Management:

Identify software vulnerabilities that could lead to exploitable weaknesses, such as SQL injection, cross-site scripting, buffer overflows, and weak encryption.

Continuously evaluate the environment for better ways to address security issues and challenge the status quo when necessary to improve security postures.

4)Policy & Procedure Development:

Design and develop comprehensive security policies, standards, and procedures covering areas such as:

Firewall management

SSL/IPSec protocols

Security Incident and Event Management (SIEM)

Data protection (DLP, encryption)

User account management (SSO, SAML)

Password and key management

Qualifications:

8+ years of experience in cybersecurity roles, with hands-on experience in security architecture and cloud security.

Strong knowledge of security assessment frameworks such as ISO, CSA-CSM, and NIST.

Expertise in identifying and mitigating security vulnerabilities in software, network, and cloud environments.

Proven experience in developing security policies and standards, as well as implementing security best practices in complex environments.

Certifications such as CISSP, CISM, or CEH are a plus.

Bachelor's or Master's degree in Information Security, Computer Science, or a related field