Senior Manager, Information Security (AppSec)

About Gartner IT:

Join a world-class team of skilled engineers who build creative digital solutions to support our colleagues and clients. We make a broad organizational impact by delivering cutting-edge technology solutions that power Gartner. Gartner IT values its culture of nonstop innovation an outcome-driven approach to success and the notion that great ideas can come from anyone on the team.

About this role

This roles primary responsibility will be to support Gartners growing Application Security team additionally this role will serve as Information Securitys Regional Leader for the Gurgaon office. You will be responsible for championing and advancing the maturity of our Application Security Program across a diverse technology landscape. Youll play a key role in defending Gartners assets and intellectual properties as you lead from the front. Our team is filled with lifelong learners who are consistently researching ways to better defend and stay ahead of the threats of tomorrow. We are a collaborative flexible group where good ideas are brought forth and acted upon whether they come from the most experienced or the newest members of the team. As an InfoSec Leader youll provide mentorship guidance influence and technical expertise but will not have direct reports. As a Regional Leader for the Gurgaon office youll be responsible for organizing promoting and engaging in in-office activities while also providing local support mentorship and direct assistance with local logistics.

What you will do

• Represent InfoSec as the Senior Leader in Gurgaon assist with local office logistics and encourage engagement with in-office activities.

• Ability to mentor motivate and guide InfoSec associates located in India.

• Optimize security solutions that align with industry best practices and Gartners specific needs.

• Design and implement security controls for cloud environments.

• Stay abreast of the latest security technologies and trends to identify opportunities for enhancing Gartners security controls.

• Collaborate with cross-functional teams to assess security risks identify vulnerabilities and develop remediation plans.

• Understand web applications at a sufficient level to work with developers to implement protective controls that may need to be customized for specific applications.

• Develop and maintain comprehensive documentation of security processes procedures and configurations.

• Drive automation initiatives enhancing analyst capabilities and workflows while eliminating monotonous tasks.

Must have

• Passion for security and solving tomorrows problems.

• Proven track record of critical independent thinking.

• A proactive and adaptable approach to problem-solving with a focus on continuous improvement.

• Strong understanding of security principles common attack vectors and mitigation strategies.

• Experience in network security data protection and application security concepts.

• Experience with implementing security solutions across Amazon Web Services (AWS) Microsoft Azure or Google Cloud Platform (GCP).

• Deep technical understanding of OWASP projects CVSS and MITRE ATT&CK frameworks to apply them successfully to the software development lifecycle.

Nice to have

• 7 years experience in Application Security or similar Information Security discipline.

• Experience with cloud infrastructure (IaaS) in Azure or AWS.

• Cloud Industry certifications (AZ500 AWS CSS CCSK etc.).

• Strong scripting/development skills in languages like Python PowerShell etc.

Who you are

• Accountable transparent and willing to go the extra mile when necessary.

• Achieved a bachelors or masters degree in computer science Information Security a related field or comparable industry experience.

• Skilled and experienced but possessing a servant leader mindset

• Passion for coaching mentoring and development of others

• Excellent communication and interpersonal skills.

• Strong problem-solving and analytical abilities.

• Proven experience in implementing and managing security solutions in a corporate environment.

• Ability to work independently and collaboratively within a team.

• Results-oriented mindset with a focus on delivering high-quality solutions.

• Self-motivated and driven to stay updated with the latest security trends technologies and best practices.

• Detail-oriented with a passion for maintaining a high level of accuracy in security assessments and documentation.

• Strong commitment to professionalism ethics and maintaining the confidentiality of sensitive information.

• Ability to adapt to a fast-paced and ever-changing security landscape.