S&P Global

Lead Information Security Engineer

S&P Global

full-time

Posted on:

Location Type: Office

Location: GurugramIndia

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloud

About the role

  • Partnering with product engineering teams to design and implement security remediation activities, while serving as the bridge between centralized security and development.
  • Applying cloud, application, and development security principles to ensure secure architectures, effective risk mitigation, and consistent adoption of security best practices across product environments.
  • Acting as a liaison between the centralized security function and product development and infrastructure support teams.
  • Contributing to defining and maintaining security standards, patterns, and best practices, including secure AI development guidelines.
  • Reviewing and advising on secure architecture, identity and access management, AI model/data protections, and cloud configurations.
  • Defining and enforcing security policies, standards, and procedures.
  • Conducting risk assessments, threat modeling, and security posture evaluations.
  • Communicating security requirements and risks effectively to both technical and non-technical stakeholders.
  • Supporting security assessments and providing recommendations for risk mitigation across cloud, application, and AI workloads.
  • Aligning security practices with frameworks (NIST CSF, ISO 27001, CIS Controls, COBIT).

Requirements

  • Strong knowledge of cloud security, with emphasis on AWS services and architecture.
  • Experience with AI security frameworks and guidance (e.g., NIST AI RMF, OWASP Top 10 for LLM Applications, MITRE ATLAS).
  • Experience in application and development security, including secure coding practices and CI/CD integration.
  • Working knowledge of IAM, container security, AI/ML security considerations, SAST/DAST tooling, and DevSecOps practices.
  • Understanding of AI risk areas (model misuse, data poisoning, privacy leakage, prompt/content manipulation) and emerging mitigation strategies.
  • Proven ability to collaborate with engineering teams to deliver security solutions and remediation.
  • Broad understanding of security domains, with the ability to evaluate and recommend tools and processes, including those supporting AI workloads.
  • 10+ years of IT security experience, with demonstrated success in senior or strategic security engineering roles.
Benefits
  • Health & Wellness: Health care coverage designed for the mind and body.
  • Flexible Downtime: Generous time off helps keep you energized for your time on.
  • Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.
  • Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
  • Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families.
  • Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cloud securityapplication securitydevelopment securitysecure coding practicesrisk assessmentsthreat modelingidentity and access managementAI security frameworksCI/CD integrationDevSecOps
Soft Skills
collaborationcommunicationrisk mitigationstakeholder engagementproblem-solvingstrategic thinkingadvisory skillsevaluation skillsrecommendation skillsinterpersonal skills