Date: Jul 13, 2026
Job Requisition Id: 65020
Location:
Bangalore, KA, IN Hyderabad, TG, IN Pune, MH, IN Hyderabad, IN Pune, IN Bangalore, KA, IN
#job-location.job-location-inline { display: inline; }
.buttontext47d030a40eb4ac5c a{ border: 1px solid transparent; } .buttontext47d030a40eb4ac5c a: focus{ border: 1px dashed #2b97ef !important; outline: none !important; }
YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.
At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.
We are looking forward to hire GRC Professionals in the following areas :
Job Title: Security Manager (Data Security & Cyber Defense)
Location: Bangalore, Pune
Experience Range: 10–14 Years
Role Overview
We are seeking a highly experienced and proactive Security Manager to lead enterprise-level cybersecurity initiatives, focusing on data security, threat hunting, SOC operations, GRC, and governance. This role is responsible for designing, implementing, and managing security strategies, driving incident response, and ensuring alignment with organizational risk and compliance frameworks.
Key Responsibilities
1. Security Operations & Incident Response
Lead and manage Security Operations Center (SOC) activities including monitoring, detection, response, and mitigation of cybersecurity threats.
Develop, implement, and continually enhance incident response plans and playbooks.
Oversee investigation and resolution of security incidents, ensuring timely closure and root cause analysis.
Coordinate with cross-functional teams for effective incident containment and recovery.
2. Threat Hunting & Detection Engineering
Drive proactive threat hunting activities using advanced tools and techniques to detect hidden threats.
Develop and refine detection use cases, correlation rules, and alerts across SIEM/EDR platforms.
Analyze threat intelligence feeds and translate them into actionable defense strategies.
3. Data Security & Endpoint Protection
Implement and manage data protection frameworks, including DLP, encryption, and data classification.
Oversee deployment and optimization of EDR/XDR solutions.
Ensure protection of sensitive data across endpoints, networks, and cloud environments.
4. Governance, Risk & Compliance (GRC)
Establish and maintain security governance frameworks, policies, and standards aligned with industry regulations (ISO 27001, NIST, SOC2, etc.).
Conduct risk assessments, vulnerability assessments, and ensure remediation tracking.
Support internal and external audits, ensuring compliance with regulatory and organizational standards.
5. Security Governance & Strategy
Define and implement enterprise security strategy and roadmap.
Drive security awareness and training programs across the organization.
Collaborate with leadership to align security initiatives with business objectives.
6. Change Management & Process Control
Integrate security controls within change management processes.
Review and approve infrastructure/application changes from a security perspective.
Ensure minimal risk introduction during system changes and deployments.
7. Stakeholder Management & Reporting
Engage with senior stakeholders to provide security posture updates, incident reports, and risk insights.
Create dashboards and executive-level reports on key security metrics and KPIs.
Interface with third-party vendors for security solutions and services.
Required Skills & Qualifications
Educational Qualification
Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
Experience & Expertise
10–14 years of experience in Cybersecurity / Information Security
Strong experience in:
SOC operations and incident response
Threat hunting and detection engineering
Data security and DLP solutions
EDR/XDR platforms (e.g., CrowdStrike, Defender, Carbon Black)
SIEM tools (Splunk, QRadar, Sentinel, etc.)
GRC frameworks and compliance standards
Technical Skills
Hands-on experience with:
Threat intelligence platforms
Log analysis and correlation
Network security tools (IDS/IPS, Firewalls, WAF)
Cloud security (AWS/Azure/GCP) – preferred
Strong understanding of:
MITRE ATT&CK framework
Cyber kill chain methodology
Vulnerability management tools
Certifications (Preferred)
CISSP, CISM, CISA, CEH, or equivalent
GIAC certifications (GCIA, GCIH) are a plus
Soft Skills
Strong leadership and team management capabilities
Excellent analytical and problem-solving skills
Effective communication with technical and non-technical stakeholders
Ability to work under pressure and handle critical incidents
Key Success Metrics
Reduction in incident response time and security breaches
Improved threat detection accuracy and response effectiveness
Compliance audit success rate
Strengthened security posture and risk mitigation
At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.
Our Hyperlearning workplace is grounded upon four principles
Flexible work arrangements, Free spirit, and emotional positivity
Agile self-determination, trust, transparency, and open collaboration
All Support needed for the realization of business goals,
Stable employment with a great atmosphere and ethical corporate culture