Associate Director Enterprise Security

📋 Description

• • Own the end-to-end security posture of Jiostar’s internal enterprise environment, covering 750-million-viewer-scale infrastructure, cloud workloads, on-prem data centers, endpoints, and networks. You will be the single threaded leader who defines the vision, builds the roadmap, and delivers measurable risk reduction across every layer of the stack.
• • Architect and enforce security controls that protect Windows, Linux, and containerized workloads running on AWS and Azure. Translate regulatory requirements (ISO 27001, SOC 2, NIST) into concrete technical standards, then automate their continuous enforcement through Infrastructure-as-Code, policy-as-code, and CI/CD gates.
• • Lead a 24×7 Security Operations Center that detects, triages, and eradicates threats before they impact content production, live sports broadcasts, or customer data. You will tune SIEM rules, orchestrate SOAR playbooks, and integrate threat-intel feeds (MITRE ATT&CK, ISACs) to shrink dwell time from hours to minutes.
• • Harden every endpoint, server, and SaaS application with modern zero-trust principles: EDR/XDR (CrowdStrike), MDM, DLP, SSO, MFA, and privileged-access management. Roll out conditional access policies that dynamically adapt to user risk, device posture, and data sensitivity.
• • Drive enterprise-wide vulnerability management—from discovery through remediation—using automated scanners, agent-based assessment, and risk-based prioritization. Partner with Engineering and IT to embed patching SLAs into sprint cycles and infrastructure pipelines.
• • Design and operate secure network segmentation, VPN, NAC, and micro-segmentation strategies that isolate critical broadcast systems, corporate back-office, and third-party vendor zones. Validate controls through purple-team exercises and continuous red-team simulations.
• • Own incident response from root-cause to post-mortem. Build runbooks, lead tabletop drills, and coordinate cross-functional war rooms that include Legal, HR, PR, and executive leadership. Ensure every lesson learned is codified into detections, policies, and training.
• • Mentor and scale a high-impact team of security engineers, analysts, and architects. Foster a culture of deep technical curiosity, blameless post-mortems, and relentless automation. Create clear career ladders and succession plans that turn junior analysts into senior threat hunters.
• • Influence business-critical decisions by translating complex security trade-offs into executive-level risk narratives. Present to the C-suite, board committees, and external auditors, ensuring security is viewed as a growth enabler rather than a cost center.
• • Continuously optimize the security-tooling budget and vendor stack. Evaluate emerging technologies—SASE, CNAPP, DSPM, AI-driven SOC analytics—and pilot them in controlled sandboxes before enterprise-wide rollout.
• • Champion Jiostar’s diversity and inclusion mission by building a team that reflects the global audiences we serve. Ensure accessibility accommodations, equitable hiring practices, and psychological safety for every employee.