Cybersecurity Specialist

BCE Global Technology Centre

Who are we:


At BCE Global Tech we are on a mission to modernize global connectivity, one connection at a time. We aim to build the highway to the future of communications, media and entertainment, determined to emerge as a powerhouse within the technology landscape in India team in Bengaluru.
We bring ambitions to life through design thinking that bridges the gaps between people, devices and beyond, fostering unprecedented customer satisfaction through technology.
Our core values support a customer-centric approach and the harnessing of cutting-edge technology to provide business outcomes with positive societal impact. Guided by innovation and a commitment to progress, we’re shaping a brighter future for the generations of today and tomorrow.
If you would like to be a part of a team of thought-leaders pioneering advancements in 5G, MEC, IoT and cloud-native architecture, we’d love to hear from you



Job Description:
We are seeking a Senior Cyber Security Specialist with strong hands-on experience in implementing, operating, and maturing security controls across enterprise environments. The role requires deep execution capability across asset management, access control, secure development, endpoint security, security testing, AI governance, supplier risk, employee awareness, monitoring & detection, and incident response, with proven expertise in PII / HSPII protection and PCI-DSS compliance. This position plays a critical role in translating security policies, standards, and frameworks into operational, measurable, and enforceable controls.


Asset & Access Management


  • Implement and maintain asset inventory controls (hardware, software, cloud assets).

  • Execute Identity & Access Management (IAM) controls including RBAC, least privilege, MFA, and periodic access reviews.

  • Support onboarding/offboarding automation and privileged access monitoring.


Secure Development & DevSecOps


  • Implement Secure SDLC controls aligned with organizational standards.

  • Integrate security checks into CI/CD pipelines (SAST, DAST, SCA).

  • Work with engineering teams to remediate code -level security issues.

  • Ensure secure configuration baselines for applications and APIs.


Endpoint Security


  • Deploy and manage endpoint protection controls (EDR/XDR).

  • Enforce device hardening, disk encryption, patching, and configuration standards.

  • Monitor endpoint compliance and address control gaps.


Security Testing & Assurance


  • Execute vulnerability management lifecycle including scanning, validation, prioritization, and remediation tracking.

  • Coordinate and support penetration testing and security assessments .

  • Validate closure of findings and maintain evidence for audits.


AI Governance & Emerging Technology Risk


  • Implement AI governance controls covering data usage, model risk, access control, logging, and monitoring.

  • Support AI risk assessments and document compliance with responsible AI principles.

  • Ensure protection of sensitive data used in AI/ML workloads.


Supplier & Third -Party Risk Management


  • Execute supplier security assessments and due diligence.

  • Track remediation of third -party security findings.

  • Monitor high -risk vendors for ongoing compliance.


Employee Security Awareness


  • Support execution of security awareness and phishing simulation programs .

  • Embed security training aligned with role -based risks.

  • Measure effectiveness through metrics and behavior improvement.


Monitoring, Detection & SOC Support


  • Implement and tune security monitoring and detection controls .

  • Integrate logs into SIEM and ensure alert coverage for critical risks.

  • Support threat detection use cases and reduce false positives.


Incident Response


  • Execute incident detection, containment, eradication, and recovery activities .

  • Participate in incident response drills and post -incident reviews.

  • Maintain IR documentation, playbooks, and evidence logs.


Data Protection & Compliance


  • Implement controls for PII and Highly Sensitive PII (HSPII) protection including encryption, access controls, logging, and retention.

  • Execute and maintain PCI-DSS technical and operational controls .

  • Support internal and external audits with accurate evidence.


Requirement


  • Bachelor Degree in Computer science or equivalent

  • 8+ years of experience in cybersecurity or information security roles.

  • Proven track record of control implementation, execution, and operationalization.

  • Strong experience implementing security controls hands -on, not just defining policy.

  • Practical knowledge of:


o IAM, PAM


o Endpoint Security (EDR/XDR)


o Vulnerability Management tools


o SIEM / SOC operations


o Secure SDLC & DevSecOps tooling


  • Solid understanding of PCI-DSS , PII/HSPII protection , and data security principles.

  • Familiarity with cloud security controls (AWS/Azure/GCP preferred).

Frameworks & Standards (Implementation Focus)
  • ISO 27001 / ISO 27002
  • NIST CSF / NIST 800 -53
  • PCI-DSS

  • Zero Trust concepts

  • Privacy and data protection controls

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

See more jobs in Bengaluru, Karnataka, jobs in India