Cloud Security Manager

Areas Of Responsibility

At Sun Pharma, we commit to helping you “Create your own sunshine”— by fostering an environment where you grow at every step, take charge of your journey and thrive in a supportive community.

Are You Ready to Create Your Own Sunshine?

As you enter the Sun Pharma world, you’ll find yourself becoming ‘Better every day’ through continuous progress. Exhibit self-drive as you ‘Take charge’ and lead with confidence. Additionally, demonstrate a collaborative spirit, knowing that we ‘Thrive together’ and support each other’s journeys.”

The Cloud Security Manager is responsible for leading the strategy, design, and operations of our cloud security programs across AWS, Azure, and/or GCP. This role involves ensuring compliance with global and industry regulations, and proactively mitigating risks to protect our cloud infrastructure, applications, and data.

Strategy & Leadership

• Develop, Implement and champion the comprehensive cloud security strategy, architecture, and roadmap that aligns with business objectives and risk tolerance.
• Act as the subject matter expert (SME) for all cloud security-related matters, collaborating with leadership, DevOps, and engineering teams.

Architecture & Operations

• Design and Implement Secure Architecture: Define and build secure design patterns and architectures for IaaS, PaaS, and Serverless environments across public cloud platforms (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center).
• Policy & Configuration: Oversee the implementation and continuous monitoring of cloud security posture management (CSPM) and cloud workload protection (CWPP) tools.
• Identity and Access Management (IAM): Develop and enforce robust IAM policies, ensuring the principle of least privilege is applied for all cloud resources.
• Data Protection: Define and ensure the proper use of encryption mechanisms for data at rest and in transit.

Governance, Risk, and Compliance (GRC)

• Create, Implement and enforce robust cloud security policies, standards and procedures
• Compliance: Ensure all cloud environments meet regulatory requirements (e.g., DPDP, GDPR, HIPAA, SOC 2, ISO 27001). Lead internal and external security audits.
• Risk Management: Conduct regular risk assessments, vulnerability scans, and penetration tests on cloud environments to identify and prioritize mitigation efforts.
• Automation: Drive the automation of security processes, including security-as-code and integrating security checks into CI/CD pipelines (DevSecOps)

Incident Response

• Develop, maintain, and test the Cloud Security Incident Response Plan (CSIRP).
• Lead the response, investigation, and forensic analysis of cloud security incidents, minimizing impact and preventing recurrence.
• Oversee continuous monitoring of cloud environments for threats, vulnerabilities and misconfigurations

Travel Estimate

5%

Job Scope

Internal Interactions (within the organization)

Cyber Security Team, IT Infrastructure Team, Cloud Infrastructure Team, DevOps Team, Business Stakeholders

External Interactions (outside the organization)

Vendor Management, OEMs, Cloud Service Provider, Cloud Security Service Provider

Geographical Scope

Global

Financial Accountability (cost/revenue with exclusive authority)

NA

Job Requirements

Educational Qualification

BE, BCA, BSc IT. Master’s is preferred

Specific Certification

HCISPP (Healthcare Information Security and Privacy Practitioner, Certified Cloud Security Professional (CCSP), AWS Certified Security - Specialty, Azure Security Engineer Associate (AZ-500), or Google Cloud Professional Cloud Security Engineer.

Relevant security certifications (e.g., CISSP, CISM) are a plus.

Experience

8+ years of experience in Information Security, with 3+ years specifically focused on cloud security architecture and operations.

Skill (Functional & Behavioural):

• Deep, hands-on expertise with security services and features in at least one major cloud provider (AWS, Azure, or GCP). Multi-cloud experience is highly preferred.
• Deep understanding of HIPAA Security and Privacy Rules and their technical implementation in cloud services
• Strong knowledge of networking, firewalls, network segmentation, and secure configuration management in a cloud context.
• Experience with scripting and automation tools (e.g., Python, Terraform, CloudFormation/ARM Templates).
• Experience implementing zero-trust security models.
• Familiarity with container security tools and orchestration technologies (e.g., Kubernetes, Docker).
• Experience with machine learning or AI-driven security tools.
• Proven ability to lead, motivate, and mentor technical security teams.
• Excellent communication skills, capable of explaining complex security issues to both technical staff and executive leadership.
• Strong analytical and problem-solving skills, with a focus on risk-based decision-making.

Your Success Matters to Us

At Sun Pharma, your success and well-being are our top priorities! We provide robust benefits and opportunities to foster personal and professional growth. Join us at Sun Pharma, where every day is an opportunity to grow, collaborate, and make a lasting impact. Let’s create a brighter future together!

Disclaimer: The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification.  It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees as assigned to this job.  Nothing herein shall preclude the employer from changing these duties from time to time and assigning comparable duties or other duties commensurate with the experience and background of the incumbent(s).