Role Summary

The Lead – Information Security (Digital) will be responsible for driving the digital security strategy, ensuring robust protection of enterprise applications, cloud platforms, and digital assets. This role will work closely with IT, Digital, and Business teams to design, implement, and monitor security controls in alignment with organizational standards and regulatory requirements.

IT is accountable for the end-to-end delivery of technology solutions, information and data related services to Reliance#s businesses and functions. We are also accountable for driving innovation and best practices through the effective use of systems and technology while ensuring the security and integrity of our data assets. The effective use of technology underpins Reliance's ability to acquire and maintain our competitive advantage.

An IT incumbent is accountable for the end-to-end delivery of business technology, information and related services to Reliance#s businesses

He/she will be expected to be a part of IT function#s transformational journey in moving towards a function that systematically enables business objectives, and drives the identification and adoption of game-changing, value-adding technologies.

Key Responsibilities

• Lead end-to-end digital security initiatives across cloud, applications, and data environments.
• Develop and implement security policies, standards, and best practices for digital platforms.
• Conduct risk assessments, vulnerability analysis, and security audits for digital systems.
• Oversee security architecture for new digital solutions, ensuring secure-by-design principles.
• Manage incident response for digital platforms and coordinate with cross-functional teams.
• Monitor cybersecurity threats, assess impact, and recommend mitigation strategies.
• Ensure compliance with internal controls, regulatory norms, and industry standards (ISO 27001, NIST, etc.).
• Collaborate with product, engineering, and operations teams to integrate security controls.
• Support SOC operations, threat intelligence activities, and security tooling enhancements.
• Drive awareness and training programs on digital security across the organization.

Required Skills & Experience

• 8–12 years of experience in Information Security, with strong exposure to digital technologies.
• Hands-on expertise in cloud security (AWS/Azure/GCP) and application security.
• Strong understanding of cybersecurity frameworks (ISO 27001, NIST, CIS, PCI-DSS).
• Experience with SIEM, IAM, DLP, EDR, and other security tools.
• Proven ability to conduct risk assessments and manage security incidents.
• Good knowledge of secure coding practices, DevSecOps, and API security.
• Strong analytical, communication, and stakeholder management skills.

Preferred Certifications

• CISSP / CISM / CEH / CCSP
• ISO 27001 Lead Implementer or Auditor
• Cloud security certifications (AWS/Azure/GCP Security)

Education

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• Master’s degree preferred.

Exp - 8 to 12 + Yrs exp