1. About BHIVE Group
   BHIVE is one of India’s leading managed workspace companies a network of 28+ premium coworking and managed office spaces across Bengaluru and other cities, catering to startups, SMEs, and enterprise clients. Known for its design-forward spaces, enterprise-grade infrastructure, and community first culture.
   With a workforce of 300+ employees, a rapidly scaling digital footprint, and operations spanning multiple facilities, BHIVE’s IT function is the backbone of secure, reliable, and compliant business operations. The organisation is in an active phase of digital transformation — investing in security frameworks,
   enterprise platforms (ZOHO ERP, Microsoft 365) and AI-enabled productivity — making this a pivotal role at a critical juncture.

2. Job Summary
   The IT Security & Governance Lead will be BHIVE Group’s dedicated security and governance role, reporting directly to the SVP – IT. This is a senior contributor role that combines strategic governance ownership with hands-on technical execution. The incumbent will be responsible for designing, implementing, and operationalising BHIVE’s end-to-end cybersecurity posture — spanning workplace platforms, endpoints, network infrastructure, cloud environments, and emerging technology adoption.
   Beyond technical controls, this role is central to BHIVE’s regulatory readiness (DPDP Act, CERT-In), AI governance, and the formulation of policies, SOPs, and documentation that embed security into every layer of the organisation. The right person will be equally comfortable writing a security policy, leading an incident response, presenting a risk register

Key Responsibilities

Workplace Platform & Email Security

• Secure and govern the Microsoft 365 environment — including identity protection, MFA enforcement, Conditional Access, and Microsoft Defender suite administration.
• Own email security governance and share point governance, ensuring robust data protection and domain integrity across all BHIVE platforms

Cybersecurity Governance, Policy & Compliance

• Build and maintain BHIVE’s cybersecurity governance framework — policies, risk registers, SOPs, and control documentation — aligned to ISO 27001 & NIST obligations.
• Lead the organisation’s DPDP Act compliance programme, conduct periodic security posture assessments, and present prioritised remediation roadmaps.

Network & Infrastructure Security

• Embed security principles into network design and architecture reviews — covering segmentation, zero-trust, firewall governance, and secure remote access.
• Own vulnerability management from scanning through remediation, ensuring continuous coverage across all network-connected assets and cloud workloads.

Endpoint, MDM & Detection Controls

• Evaluate, deploy, and manage MDM and EDR/XDR solutions; enforce endpoint hardening baselines and DLP controls across corporate and BYOD devices.
• Maintain end-to-end threat visibility — tuning detection rules, triaging alerts, and driving timely response across all endpoint environments.

Vendor, Software & Third-Party Governance

• Own third-party and vendor access governance — risk assessments, JIT access controls, SaaS subscription management, and shadow IT mitigation.
• Collaborate with procurement and legal on security requirements in vendor contracts, and govern ERP access controls and audit trail configuration.

AI Governance & Emerging Technology

• Develop and operationalise BHIVE’s AI Governance Policy, defining acceptable use, data handling guardrails, and risk controls for tools such as Microsoft Copilot ,ChatGPT,Claude etc.
• Monitor the evolving regulatory and threat landscape (DPDP, CERT-In, RBI guidelines) and brief on implications for BHIVE’s security posture.

Security Awareness & Incident Response

• Run the organisation-wide security awareness programme — phishing simulations, role-based training to build a security-first culture.
• Own the Incident Response Plan; coordinate incident response, and deliver regular security dashboards and risk reports to the SVP-IT.

Required Qualifications

• Education Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related technical field. Master’s degree or MBA (IT/Systems) is an advantage.
• Experience 8 – 12 years of overall IT/Security experience with a minimum of 4 – 6 years in a dedicated cybersecurity, governance, or infrastructure security role.
• Certifications One or more of equivalent industry-recognised security certification.

Required Skills & Experience

Microsoft 365 & Identity Security

• Hands-on experience administering Microsoft 365 security — Conditional Access, Entra ID (Azure AD), Identity Protection, and Microsoft Secure Score.
• Proficiency with Microsoft Defender suite (Defender for Endpoint, Defender for Office 365, Defender for Identity).
• Practical experience configuring and governing (MDM/MAM) for device compliance and policy enforcement.

Email & Domain Security

• Demonstrated implementation of DMARC ,DKIM, and SPF across multiple domains.
• Experience with email gateway configuration, anti-phishing policies, and safe links / safe attachments.
• DNS management and domain governance — understanding of zone files, registrar security, and certificate management.

Governance, Risk & Compliance (GRC)

• Experience building or significantly contributing to a cybersecurity governance framework — policies, standards, procedures, and control documentation.
• Ability to conduct risk assessments, produce risk registers, and present findings to non-technical stakeholders.
• Strong SOP and policy writing skills — clear, concise, and actionable documentation for both technical and business audiences.

Endpoint & Detection

• Experience deploying and managing EDR / XDR solutions (CrowdStrike, SentinelOne, Microsoft Defender for Endpoint, or equivalent).
• Ability to define and validate CIS benchmark-aligned hardening baselines for Windows and macOS.
• Working knowledge of DLP technologies — configuration, tuning, and exception management.

Network & Infrastructure Security

• Understanding of network security principles — firewall governance, network segmentation, zerotrust concepts, and secure remote access (VPN / ZTNA).
• Experience with vulnerability management tools (Tenable, Qualys, Rapid7, or Microsoft Defender Vulnerability Management).

Collaboration & Communication

• Ability to communicate complex security concepts to C-level and non-technical audiences with clarity and confidence.
• Strong stakeholder management — able to work with IT teams, business units like legal, HR, and external vendors.
• Comfortable presenting risk posture reports, dashboards, and incident briefings to senior leadership.
• Understanding of business continuity planning (BCP) and disaster recovery (DR) as they intersect with security
• Exposure to cloud security posture management (CSPM) for Azure or AWS environments.