EXL

Cyber, Cloud and Application Security

EXL

full-time

Posted on:

Location Type: Hybrid

Location: Jersey City, New Jersey • New Jersey • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Lead

Tech Stack

AWSCloudCyber SecurityJavaMicroservicesPythonSDLC

About the role

  • Define and execute the security strategy for application and cloud environments aligned to business priorities, delivery timelines, and compliance requirements
  • Lead by example with a strong hands-on presence in technology, tooling, and program execution
  • Proactively identify, assess, and track vulnerabilities, control gaps, and architectural risks across products and cloud platforms
  • Prioritize remediation efforts based on risk, business impact, and threat intelligence—partnering with engineering teams to drive resolution
  • Provide real-time advisory to development teams during design, build, and release stages
  • Scale security guardrails and developer-friendly tooling across hybrid and cloud-native environments (AWS, containers, IaC, etc.)
  • Champion threat modeling, secure coding practices, and resilience-by-design at the feature level
  • Define and govern secure reference architectures and patterns for cloud adoption, microservices, and serverless environments
  • Collaborate with Enterprise Architecture and serve on the Security Architecture Review Board (SARB)
  • Deploy and optimize a modern security tooling stack including SAST, DAST, SCA, IaC scanning, CSPM, secrets detection, and runtime protection
  • Act as a key collaborator across product, engineering, infrastructure, and DevOps teams—reducing security friction and aligning controls with workflows
  • Build trust through enablement, education, and repeatable guidance frameworks
  • Lead, mentor, and grow a high-performing team of AppSec and CloudSec professionals
  • Foster a culture of innovation, ownership, and technical excellence
  • Define and report on KPIs/KRIs tied to application and cloud security posture, remediation progress, and control maturity
  • Support compliance, audit, and customer security assurance initiatives
  • Support AI/ML privacy practices, model governance, training data management, and privacy risk mitigation in LLM pipelines (bonus)

Requirements

  • 10+ years in cybersecurity with a focus on application and/or cloud security
  • 5+ years of team leadership, with proven experience building and scaling security engineering functions
  • Execution experience and capability in a fast-paced environment
  • Demonstrated ability to balance strategic direction with hands-on technical execution
  • Strong expertise in secure SDLC, threat modeling, DevSecOps, and cloud-native architectures
  • Experience in securing modern technology stacks including Java, Python, microservices, container orchestration, and public cloud (preferably AWS)
  • Familiarity with key tooling: SAST, DAST, SCA, IaC scanning, secrets detection, CSPM, WAF, and API security platforms
  • Proficiency in cloud infrastructure security (IAM, networking, data protection, KMS, etc.)
  • Bachelor’s degree in computer science, Cybersecurity, or a related technical field; advanced degree or certifications (e.g., CISSP, CSSLP, CCSP, AWS Security Specialty) preferred
  • Research and evaluate emerging privacy technologies from academia and industry, contributing to open-source tools and AI privacy standards
  • Act as consultant and advocate for privacy best practices as central to our mission of Responsible AI
  • Strong communicator with the ability to positively influence engineers, developers, architects, and business leaders alike (preferred)
  • Thoughtful, pragmatic, and able to execute in a high-velocity, agile environment (preferred)
  • Deeply collaborative and experienced at embedding security into developer culture (preferred)
  • Track record of reducing risk without slowing down innovation (preferred)
  • Broad knowledge across the Security domain, and demonstrated focus in AI security evaluations and areas such as Red Teaming, Purple Teaming, Vulnerability Research, and Exploitation (preferred)
  • Master's degree (or foreign equivalent) in Information Systems Engineering, Computer Science, Engineering, Information Security, Cyber Security, Information Assurance, or related field (preferred)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
cybersecurityapplication securitycloud securitysecure SDLCthreat modelingDevSecOpsJavaPythonmicroservicescontainer orchestration
Soft skills
team leadershipcommunicationcollaborationinfluenceinnovationmentoringexecution in fast-paced environmentspragmatismtrust buildingeducation
Certifications
CISSPCSSLPCCSPAWS Security Specialty
EXL

AVP, Healthcare Cybersecurity

EXL
Leadfull-timeNew Jersey · 🇺🇸 United States
Posted: 3 hours agoSource: fa-ewjt-saasfaprod1.fa.ocs.oraclecloud.com
AWSAzureCloudCyber Security
TD

Information Security Specialist – Email Governance

TD
Senior · Leadfull-time$87k–$151k / yearFlorida, New Jersey, North Carolina · 🇺🇸 United States
Posted: 1 day agoSource: td.wd3.myworkdayjobs.com