Job Description

Project Role :

Security Architect

Project Role Description :

Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills :

Security Information and Event Management (SIEM)

Good to have skills :

Microsoft Azure Sentinel

Minimum

12

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in strategic discussions to enhance security protocols and contribute to the overall security posture of the organization. Roles & Responsibilities: - Expected to be an SME. - Collaborate and manage the team to perform. - Responsible for team decisions. - Engage with multiple teams and contribute on key decisions. - Expected to provide solutions to problems that apply across multiple teams. - Facilitate training sessions to enhance team knowledge on security protocols. - Conduct regular assessments of security measures to identify areas for improvement. - Act as an incident commander, correlating incidents (IT/OT SOC) to provide investigation direction to L2 SOC. - Manage critical/high-severity and sophisticated cyber incidents. - Lead and drive crisis management for security incidents (P1s and P2s), instilling confidence in the client's CISO office through effective containment and remediation strategies. - Drive PIR (Post-Incident Response), lessons learned and propose applicable use cases to enhance detection capabilities post-security incidents. - Stakeholder management experience - internal and client and experienced in handling difficult conversations to come up with a win-win scenario. - Ensure quality and efficiency in incident response by L1/L2 SOC teams. - Ensure accuracy of SOPs, playbooks, and IR - coverage all threat vectors - Ensuring MITTR attack coverage and continuous focus on improving detection capabilities. Develop and execute service improvement plans. - Present SOC service performance to the Customer SOC and GRC Manager on a monthly basis. - Provide inputs to the Customer Security Engineering Manager on issues, new developments, testing, and implementation for SOAR Playbooks & Security analytics detection use cases - Contribute to the development, maintenance, and standardization of SOC processes, policies, and procedures. - Participate in cross-partner council meetings to address resolution delays by incumbent partners. - Engage in breach and attack simulation exercises, Tabletop exercise and drive remediation efforts. - Define paths for professional advancement (technical and soft skills). - Execute all responsibilities on a 24/7 basis. Professional & Technical Skills: - Proficiency in Security Information and Event Management (SIEM). - Experience with Microsoft Azure Sentinel. - Strong understanding of cloud security principles and frameworks. - Experience with incident response and threat management. - Familiarity with compliance standards such as ISO 27001 and NIST. -13-16 years of experience in SOC services, with 3-4 years of hands-on expertise in Sentinel SOC and XSOAR/SOAR platform. - Minimum 2-3 years of experience as a SOC lead / SOC manager role. - Deep understanding of NIST and all other SOC framework Additional Information: - The candidate should have minimum 12 years of experience in Security Information and Event Management (SIEM). - This position is based at our Bengaluru office. - A 15-year full time education is required.




15 years full time education