Job Description

Title: Security Architecture Design
Location: Pune
Exp: 7.5 years
:
Roles & Responsibilities:

• Minimum of 8 years of professional experience, preferably with a minimum of 3 years of hands-on involvement in security architecture and threat modeling.
• Demonstrate a profound comprehension of security architecture, capable of creating, assessing, and revising secure solutions that promote scalability, adaptability, and reusability.
• Act as the subject matter expert (SME) responsible for guiding and making security architecture decisions across all aspects of Client client presales, proposal design, and integration within client ecosystems.
• Develop and uphold reusable security architecture and design patterns for utilization.
• Create, devise, and troubleshoot intricate security implementations, overseeing the development of High-Level Design (HLD) and Low-Level Design (LLD) documents.
• Conduct design and implementation assessments and engage in threat modeling as necessary, adhering to established standards and best practices (e.g., STRIDE, PCI DSS, CSA CCM).
• Possess experience in cloud architectures and security controls, encompassing network security, Identity and Access Management (IAM), data protection, application security, and logging, among others.
• Proven track record in security frameworks and processes, including CIS, NIST, PCI/DSS, CCM SOCI/II, ISO/IEC 27001, NIST 800-53, OWASP, ISM, etc.
• Support Sales Leads by serving as a consultant during pre-sales activities, which involve assessing client requirements, defining project scopes, and preparing proposals and project plans.
• Demonstrate a robust understanding of potential attack vectors and the ability to design and articulate agile security controls to safeguard against them.
• Thorough comprehension of security principles and tools, including certificates, Data Loss Prevention (DLP), Web Application Firewalls (WAF), Security Information and Event Management (SIEM), firewalls, Distributed Denial of Service (DDoS) prevention, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), privileged access management, encryption, SSL, VPN, IPSec, TCP/IP, DNS, and web security architecture, among others.

Professional & Technical Skills:

• Strong Network & Cyber Security Architecture
• Experience in architecting and developing security solutions on one or more cloud platform (AWS, GCP or Azure) and applying the cloud native security services.
• Cloud Security certifications (CCSP, AWS, Azure, Google Cloud etc.)
• Good to have Industry / academic accreditations / certifications in Security, Architecture, Network Security, Cloud or Technology disciplines preferred (e.g., CISSP, TOGAF, SABSA, CISM, CCIE etc.)
• Bonus if you have experience in DevSecOps, DevOps

Skills Required