As one of the world’s leading asset managers, Invesco is dedicated to helping investors worldwide achieve their financial objectives. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world.

If you're looking for challenging work, smart colleagues, and a global employer with a social conscience, come explore your potential at Invesco. Make a difference every day!

Job Description

Job Purpose (Job Summary):
We're seeking passionate top talent with technical expertise in the maintenance and support of SaaS Applications in the Cloud Security & Engineering department in the Information Security organization. The individual will identify and resolve issues, improve system security and search for security improvement opportunities. Additionally, maintain and follow all relevant procedures and documentation, reviewing and updating where required.

Your Team

Our Information Security department protects Invesco’s information and Information assets from all internal and external, deliberate, or accidental threats. The information security team protects data from unauthorized access while maintaining the confidentiality, integrity, and availability of information. In addition, designing and maintaining the Security Policies and Standards while adhering to legislative and regulatory requirements, providing information security training for all employees, and ensuring the business continuity of Invesco.

Your Role:

The Senior Manager - SaaS Security will be responsible for designing, implementing, and managing security governance frameworks for our SaaS products. This role requires collaboration with various departments to ensure compliance. Design and implementing, managing, and monitoring security measures to protect our SaaS applications and the data of our customers. You will work closely with cross-functional teams to ensure our cloud security practices meet industry standards and comply with relevant regulations. The Senior Manager - SaaS Security will be a member of the Global Information Security team ensuring that Invesco’s SaaS landscape is secure.

You Will Be Responsible For:

• Develop and implement security strategies, policies, and procedures for SaaS applications.
• Develop and implement security governance frameworks, policies, and procedures for SaaS applications. Conduct regular security assessments, audits, and risk management activities to identify and mitigate security risks.
• Establish and monitor key performance indicators (KPIs) and metrics to track the effectiveness of security governance.
• Collaborate with internal teams, including IT, Legal, and Compliance, to ensure cohesive and comprehensive security practices.
• Provide guidance and support for incident response and management activities.
• Develop and deliver security governance training and awareness programs for employees.
• Monitor and respond to security incidents, vulnerabilities, and threats in the cloud environment.
• Conduct regular security assessments, audits, and penetration testing of SaaS applications.
• Onboard and implement to protect the data and applications hosted by a SaaS provider. This typically includes measures such as encryption, authentication, access controls, network security and data backup and recovery.
• Collaborate with development and operations teams to ensure secure coding practices and secure deployment of applications.
• Work with identity and access management (IAM) team to control access to cloud resources.
• Develop and deliver security training and awareness relating to SaaS Security for employees.
• Stay up-to-date with the latest security trends, vulnerabilities, and technologies in cloud security.
• Define technical requirements related to data protection, interaction with other software in deployment, inter-component communication, data security at rest, in use, and in–transit
• Provides appropriate security engineering and support activities such as patches, upgrades, improvements.
• Think and act strategically. Evaluate and implement security solutions to meet business needs
• Proactively contacts stakeholders when production services are significantly delayed or impacted.
• Participates in creation and ongoing maintenance of documentation to ensure that clear, concise and accurate information is readily available to assist with incident resolution.
• Optimize existing automation solutions for performance and reliability.
• Staying updated with the latest technologies and tools in automation and continuously improving skills.

Other

• Attend scheduled meetings with Team Lead/Department/Town Hall/ARB representation
• Become familiar with company methodologies
• Actively participate with Team Lead in creating personal development plan
• Provide the Team Lead with ideas to enhance or improve team processes and procedures and ensure agreed procedures are followed
• Attend scheduled training sessions
• Administrative activities – time sheets/compliance requests

The Experience You Bring:

Work Experience / Knowledge:

• 8 to 10+ years of experience in delivering IT Security with exposure on various Technology solutions. (or equivalent experience).
• Threat Modeling, Cloud Data Protection, Security Information Event Monitoring (SIEM) systems, cloud workload protection, Next-Gen platforms, Security Groups, IAM, Key Management Solutions, etc.
• Knowledge of common Internet protocols and applications
• Hands on experience in performing configuration scans
• Knowledge of TCP/IP Protocols, JSON, application security and software defined solutions
• Requires solid understanding of Cloud IAM administration, Active Directory & ADFS, SSO, user authentication and GPO implementation.
• Proficiency in security tools and technologies (e.g., firewalls, encryption, SIEM, IAM).
• Strong understanding of network security, application security, and data protection.
• Excellent problem-solving skills and attention to detail.
• Proven experience in cloud security, with a focus on SaaS environments.

Inter-personal skills / Other attributes required:

• Strong problem-solving capabilities with an analytical, methodical approach
• Excellent verbal and written communication skills, including impressive email communication abilities.
• Can articulate complex technical issues in a manner understandable to non-technical individuals.
• Adaptable to working in a global, multicultural environment.
• Exhibits a structured, disciplined approach to work with keen attention to detail.
• Displays disciplined time management skills.
• Capable of multitasking and handling multiple initiatives concurrently.
• Self-motivated and proficient in working with minimal supervision.
• Responds positively under pressure to meet tight deadlines.
• Can work effectively both independently and as a collaborative team player.
• Thrives on challenging work and exhibits a strong desire to learn and advance.

Formal Education:

• BTech in Computer Science or Bachelor's degree in Computer Science

Full Time / Part Time

Worker Type

Job Exempt (Yes / No)

Workplace Model

At Invesco, our workplace model supports our culture and meets the needs of our clients while providing flexibility our employees value. As a full-time employee, compliance with the workplace policy means working with your direct manager to create a schedule where you will work in your designated office at least three days a week, with two days working outside an Invesco office.

Why Invesco

In Invesco, we act with integrity and do meaningful work to create impact for our stakeholders. We believe our culture is stronger when we all feel we belong, and we respect each other’s identities, lives, health, and well-being. We come together to create better solutions for our clients, our business and each other by building on different voices and perspectives. We nurture and encourage each other to ensure our meaningful growth, both personally and professionally.

We believe in diverse, inclusive, and supportive workplace where everyone feels equally valued, and this starts at the top with our senior leaders having diversity and inclusion goals. Our global focus on diversity and inclusion has grown exponentially and we encourage connection and community through our many employee-led Business Resource Groups (BRGs).

What’s in it for you?

As an organization we support personal needs, diverse backgrounds and provide internal networks, as well as opportunities to get involved in the community and in the world.

Our benefit policy includes but not limited to:

• Competitive Compensation
• Flexible, Hybrid Work
• 30 days’ Annual Leave + Public Holidays
• Life Insurance
• Retirement Planning
• Group Personal Accident Insurance
• Medical Insurance for Employee and Family
• Annual Health Check-up
• 26 weeks Maternity Leave
• Paternal Leave
• Adoption Leave
• Near site Childcare Facility
• Employee Assistance Program
• Study Support
• Employee Stock Purchase Plan
• ESG Commitments and Goals
• Business Resource Groups
• Career Development Programs
• Mentoring Programs
• Invesco Cares
• Dress for your Day

In Invesco, we offer development opportunities that help you thrive as a lifelong learner in a constantly evolving business environment and ensure your constant growth. Our AI enabled learning platform delivers curated content based on your role and interest. We ensure our manager and leaders also have many opportunities to advance their skills and competencies that becomes pivotal in their continuous pursuit of performance excellence.

To know more about us

About Invesco: https://www.invesco.com/corporate/en/home.html

About our Culture: https://www.invesco.com/corporate/en/about-us/our-culture.html

About our D&I policy: https://www.invesco.com/corporate/en/our-commitments/diversity-and-inclusion.html

About our CR program: https://www.invesco.com/corporate/en/our-commitments/corporate-responsibility.html

Apply for the role @ Invesco Careers: https://careers.invesco.com/india/