Home
Role Summary

The Delivery Manager will be responsible for end-to-end delivery of cybersecurity services for enterprise customers, acting as the primary customer interface. This role ensures timely, high-quality, and compliance-aligned delivery across Application Security, VAPT, Secure Architecture Reviews, DevSecOps (preferred), Cloud Security (preferred), and Configuration Audits, in line with CERT-In and regulatory requirements.

Key Responsibilities
Customer Engagement & Governance
  • Act as the single point of contact (SPOC) for customers throughout the engagement lifecycle
    • Lead kick-off meetings, periodic status reviews, and closure discussions
    • Manage customer expectations, risks, and escalations proactively
  • Lead kick-off meetings, periodic status reviews, and closure discussions
  • Manage customer expectations, risks, and escalations proactively
  • Act as the single point of contact (SPOC) for customers throughout the engagement lifecycle
    • Lead kick-off meetings, periodic status reviews, and closure discussions
    • Manage customer expectations, risks, and escalations proactively

End-to-End Delivery Ownership
  • Own delivery across Application Security, VAPT, Architecture Reviews, DevSecOps, Cloud Security, and Configuration Audits
    • Ensure scope adherence, timelines, effort estimation, and delivery quality
    • Manage multiple parallel customer engagements effectively
  • Ensure scope adherence, timelines, effort estimation, and delivery quality
  • Manage multiple parallel customer engagements effectively
  • Own delivery across Application Security, VAPT, Architecture Reviews, DevSecOps, Cloud Security, and Configuration Audits
    • Ensure scope adherence, timelines, effort estimation, and delivery quality
    • Manage multiple parallel customer engagements effectively

Application Security & VAPT Delivery
  • Oversee Web, Mobile, and API security testing engagements (SAST, DAST, IAST)
    • Manage Network, Infrastructure, and Cloud VAPT activities
    • Ensure findings are validated, risk-based, and business-aligned
  • Manage Network, Infrastructure, and Cloud VAPT activities
  • Ensure findings are validated, risk-based, and business-aligned
  • Oversee Web, Mobile, and API security testing engagements (SAST, DAST, IAST)
    • Manage Network, Infrastructure, and Cloud VAPT activities
    • Ensure findings are validated, risk-based, and business-aligned

Secure Architecture & Threat Modeling
  • Lead secure architecture and design reviews for applications, APIs, and platforms
    • Ensure threat modeling using STRIDE / OWASP Threat Modeling methodologies
    • Translate architectural risks into actionable remediation recommendations
  • Ensure threat modeling using STRIDE / OWASP Threat Modeling methodologies
  • Translate architectural risks into actionable remediation recommendations
  • Lead secure architecture and design reviews for applications, APIs, and platforms
    • Ensure threat modeling using STRIDE / OWASP Threat Modeling methodologies
    • Translate architectural risks into actionable remediation recommendations

Configuration & Compliance Audits
  • Lead configuration audits for Operating Systems, Databases, Network Devices, and Cloud Services
    • Ensure alignment with CERT-In guidelines, RBI, SEBI, IRDAI, ISO 27001, OWASP, and CIS benchmarks
    • Support customers during regulatory, internal, and third-party audits
  • Ensure alignment with CERT-In guidelines, RBI, SEBI, IRDAI, ISO 27001, OWASP, and CIS benchmarks
  • Support customers during regulatory, internal, and third-party audits
  • Lead configuration audits for Operating Systems, Databases, Network Devices, and Cloud Services
    • Ensure alignment with CERT-In guidelines, RBI, SEBI, IRDAI, ISO 27001, OWASP, and CIS benchmarks
    • Support customers during regulatory, internal, and third-party audits

Quality Assurance & Reporting
  • Review and approve VAPT, architecture review, and cloud security reports
    • Ensure reports are clear, audit-ready, and executive-friendly
    • Maintain consistency in risk rating, impact articulation, and remediation guidance
  • Ensure reports are clear, audit-ready, and executive-friendly
  • Maintain consistency in risk rating, impact articulation, and remediation guidance
  • Review and approve VAPT, architecture review, and cloud security reports
    • Ensure reports are clear, audit-ready, and executive-friendly
    • Maintain consistency in risk rating, impact articulation, and remediation guidance

Team & Resource Management
  • Plan and allocate AppSec engineers, VAPT consultants, and DevSecOps specialists
    • Monitor utilization, delivery performance, and skill alignment
    • Mentor teams on customer communication and documentation standards
  • Monitor utilization, delivery performance, and skill alignment
  • Mentor teams on customer communication and documentation standards
  • Plan and allocate AppSec engineers, VAPT consultants, and DevSecOps specialists
    • Monitor utilization, delivery performance, and skill alignment
    • Mentor teams on customer communication and documentation standards

Pre-Sales & Account Support
  • Support RFPs, proposals, and customer solution discussions
    • Provide inputs for effort estimation, delivery timelines, and engagement models
    • Identify opportunities for account growth and repeat business
  • Provide inputs for effort estimation, delivery timelines, and engagement models
  • Identify opportunities for account growth and repeat business
  • Support RFPs, proposals, and customer solution discussions
    • Provide inputs for effort estimation, delivery timelines, and engagement models
    • Identify opportunities for account growth and repeat business

Required Skills & Competencies
Technical & Domain Knowledge
  • Strong understanding of Application Security, VAPT, and Secure SDLC
  • Working knowledge of DevSecOps and Cloud Security concepts
  • Familiarity with OWASP, NIST, CIS, ISO 27001, and CERT-In guidelines
  • Experience delivering services to regulated industries (Banking, FinTech, BFSI)

Delivery & Leadership Skills
  • Excellent customer communication and stakeholder management
  • Strong delivery governance and escalation handling skills
  • Ability to balance quality, timelines, and customer expectations

Preferred Certifications
  • CEH / eWPTX / GWAPT
  • Cloud Security certifications (AWS / Azure / GCP)
  • ISO 27001 Lead Auditor / Implementer

Immediate Joiners Preferred

Required Skills

Leadership Application Security VAPT Secure SDLC Delivery Management
View all job openings