Job Description

Pune, IN-MH
Position Type
Full Time


Requisition ID
12490


Level of Education
3 Year Degree or equivalent


Years of Experience
10+ to 15 Years

About XBP

XBP Global is a workflow automation leader that leverages decades of industry experience, global footprint and Agentic AI to rethink business process automation and enable digital transformation for our clients. We are approximately 11,000 professionals strong, present across 20 countries, and support over 2,500 clients worldwide.




The

Director of Security Architecture

is the principal authority on cybersecurity architecture and design for the entire organization. You will be responsible for creating the vision, strategy, and roadmap for our security infrastructure. This role requires a deep understanding of the current and future threat landscape, combined with the business acumen to align security initiatives with corporate objectives. You will lead a team of security architects and engineers, providing mentorship and guidance while collaborating with executive leadership to manage risk and enable business innovation securely.

1. Strategic Leadership & Vision:

Develop, own, and drive the enterprise-wide security architecture vision, strategy, and multi-year roadmap. Act as the primary technical security advisor to the CISO, CTO, and other executive stakeholders on emerging threats, technologies, and strategic opportunities. Lead, mentor, and develop a high-performing team of security architects and specialists. Manage the security architecture budget, resource planning, and vendor relationships.

2. Architecture & Design:

Design and oversee the implementation of a comprehensive security architecture that incorporates principles of

Zero Trust

,

Secure-by-Design

, and

Defense-in-Depth

. Establish and maintain security architecture standards, patterns, and best practices for all technology domains, including

cloud (AWS, Azure, GCP)

, on-premise data centers, networks, applications, and endpoints. Lead the architecture of critical security services such as

Identity and Access Management (IAM/PAM)

,

Data Loss Prevention (DLP)

, encryption, and threat intelligence. Ensure the integration of security into the development lifecycle (

DevSecOps

) to secure our CI/CD pipelines and software supply chain.

3. Governance, Risk & Compliance (GRC):

Collaborate with the GRC team to translate regulatory requirements (e.g., ISO 27001, SOC 2, GDPR, etc.) into actionable architectural controls and solutions. Lead security architecture reviews and threat modeling exercises for new projects, products, and services to identify and mitigate risks proactively. Develop and maintain a complete inventory of security architecture artifacts, including diagrams, standards, and policies.

4. Technology & Innovation:

Continuously evaluate the evolving cybersecurity landscape, including new technologies, attack vectors, and mitigation techniques. Lead proof-of-concept (POC) initiatives for emerging security solutions like

SASE (Secure Access Service Edge)

,

XDR (Extended Detection and Response)

, and AI-driven security platforms. Drive innovation by championing new security capabilities that provide a competitive advantage and reduce risk.

Required Qualifications & Experience

Experience:

A minimum of

12-15 years

of experience in cybersecurity, with at least

5 years

in a senior security architecture or leadership role.

Education:

Bachelor's degree in Computer Science, Information Security, or a related field.

Leadership:

Proven track record of leading, managing, and mentoring technical teams.

Technical Expertise:

Expert-level knowledge of security principles across multiple domains, including cloud security (IaaS, PaaS, SaaS), network security (firewalls, IDS/IPS, ZTNA), application security (SAST, DAST, WAF), and data protection. Deep experience designing and implementing solutions based on industry frameworks such as

NIST Cybersecurity Framework (CSF)

,

CIS Controls

, and

MITRE ATT&CK

. Hands-on experience with enterprise-level security technologies and vendors.

Business Acumen:

Ability to translate complex technical security concepts into clear business risks and opportunities for executive leadership.

Communication:

Exceptional communication, presentation, and interpersonal skills.

Preferred Qualifications

Master's degree in Cybersecurity or a related technical field. Professional certifications such as

CISSP

,

CISM

,

TOGAF

, or

SABSA

. Cloud security certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer). Experience in a large, global enterprise or in a highly regulated industry (e.g., finance, healthcare). Demonstrated experience in developing and implementing a Zero Trust architecture.

Preferred Qualifications

Master's degree in Cybersecurity or a related technical field.

Professional certifications such as

CISSP

,

CISM

,

TOGAF

, or

SABSA

.

Cloud security certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer).

Experience in a large, global enterprise or in a highly regulated industry (e.g., finance, healthcare).

Demonstrated experience in developing and implementing a Zero Trust architecture.

XBP Global recruiters or representatives will only contact you from emails ending with @xbpamericas, @xbpasia, @exelaonline.com, @exelatech.com, @lexicode.com, @rustconsulting.com or @ersgroup.com. We would never ask you for payment or ask you to deposit a cheque into your personal bank account during the recruitment process.