Ollion is the global, born-in-the-cloud consultancy working together to unify business-shaping tech for good.
Lead Engineer – Security
Location
India
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
Lead Engineer – Security
Ollion
• Lead security discovery workshops with client stakeholders to map out security requirements • Translate high-level architectural requirements into actionable security user stories, tasks, and implementation roadmaps • Evaluate technical trade-offs between native cloud tools and agnostic platforms • Design and document end-to-end cloud security frameworks tailored to client environments • Document existing client controls and packages for SOC 2 and HITRUST compliance • Establish early-stage governance, security processes, and compliance tracking for AI • Define long-term maintenance, security guidelines, and architecture health policies • Establish policies for regular code scanning and automated code review workflows • Prioritize and coordinate remediation plans with core client development teams • Oversee security preparation for critical next-phase applications
Job Requirements
- 6 - 12 years of progressive experience across cybersecurity, security engineering, or security architecture
- Proven understanding of cloud-focused API security, identity access management, network security, and data protection
- Strong experience with vulnerability scanning platforms, code verification tools, and tracking development remediation
- Exceptional written communication skills
- Strong domain experience in Healthcare Technology, HIPAA requirements, or patient/provider data security environments
- Active experience preparing technical architectures for SOC 2 and HITRUST audit frameworks
- Deep familiarity with cloud ecosystems (specifically Google Cloud Platform / GCP)
- Professional security accreditations (e.g., CISSP, CCSP)
Benefits
- Competitive, in-market total rewards package including base salary & short-term incentive
- Medical insurance in line with industry benchmarks
- Mental health resources and wellness programs
- Generous time off and leave allowances
- Retirement planning (CPR, EPF, company-matched 401(k))
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Ensure adoption of minimum requirements for Global Controls aligned with the business risk appetite as part of the cybersecurity strategy. • Assess and evaluate cybersecurity and technology risks (projects, third parties, systems, and information). • Automate area‑specific manual controls using AI‑based solutions.
• Coordinate cybersecurity and technology risk‑management activities. • Oversee implementation of the cybersecurity strategy. • Strengthen the team in the automation of security controls and manual security tasks. • Ensure compliance with applicable regulatory and legal requirements, as well as corporate best practices.
• Coordinate cybersecurity and technology risk-management activities for the assigned product/area. • Oversee the implementation of the cybersecurity strategy. • Enable the adoption of global defenses and drive the implementation of minimum requirements, policies, controls, and reporting. • Responsible for procedures and controls to ensure compliance with applicable regulatory and legal requirements, as well as corporate best practices. • Assess and evaluate cybersecurity and technology risks (projects, third parties, systems, and information). • Automate area‑specific manual controls using AI‑based solutions.
Junior Information System Security Officer
Titan TechnologiesA family of companies including Titan Technologies, LLC, TelaForce, LLC and Titan Facilities, Inc.
• Assist with day-to-day cybersecurity operations for assigned information systems. • Support implementation of the NIST Risk Management Framework (RMF). • Develop and maintain System Security Plans (SSPs), Security Assessment Reports (SARs), Plans of Action and Milestones (POA&Ms), and supporting authorization documentation. • Monitor security controls to ensure continued compliance with NIST SP 800-53. • Participate in continuous monitoring activities and vulnerability management. • Review security scan results from tools such as ACAS, Nessus, or Tenable and assist with remediation tracking. • Support annual security control assessments and Authority to Operate (ATO) activities. • Coordinate with system administrators, network engineers, and application owners to implement security controls. • Assist in security incident reporting, documentation, and corrective actions. • Maintain audit evidence supporting FISMA compliance. • Ensure user access reviews are completed and privileged accounts are monitored. • Participate in configuration management reviews and evaluate security impacts of system changes. • Assist with security awareness activities and policy compliance.


