The Job logo

What

Where

Security Architect

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

Smart SummaryPowered by Roshi
We are looking for a highly experienced and skilled candidate with 8+ years of industry experience in Application and Cloud security. You will be responsible for leading application security reviews and threat modeling, as well as developing and promoting security architectures to protect microservices, serverless, containers, and cloud architectures. Familiarity with regulatory requirements and compliance standards is essential. In addition, you will be required to drive deep security architectural discussions, ensure compliance with information security practices, and develop automated security testing systems. Strong collaboration and communication skills are required for this role. Apply now and be part of our security initiative!

Role Requirements :

·       8+ years of industry experience working with Application and Cloud security.

·       Lead application security reviews and threat modeling, including code review, DAST , SAST.

·       Experience (hands-on) with security tools integrated into our CI/CD and production environments such as SonarQube, Snyk, Veracode.

·       Familiar with CSPM products , WIZ, Palo Alto Prisma cloud.

·       Strong hands-on knowledge and experience with Kubernetes security and platform.

·       Skills related to Secure Software Development Lifecycle (SSDLC) Secure configuration management and secure SDLC methodologies.

·       Experience reviewing security aspects of software designs.

·       Familiarity with regulatory requirements and compliance standards (FedRAMP, NIST, ISO 27001, PCI, HIPAA, SOC2 ).

·       Cloud security risk assessment & Network security architecture.

Job Requirements: 

·       Develop and promote security architectures to protect microservices, serverless, containers, application development and operations practices

·       Hands on experience architecting and securing Cloud Computing Platforms. ( AWS , GCP )

·       Familiarity and ability to explain common security flaws and ways to address them (e.g. OWASP Top 10)

·       Responsible for providing security guidance to other team members in their design, implementation and support of new cloud architecture and automation technologies.

·       Provide security reviews and threat modeling for difficult or highly complex applications or cloud archtecture.

·       Develop secure cloud architecture designs, considering best practices, regulatory requirements and business objectives.

·       Drive deep security architectural discussions in a collaborative manner to ensure cloud deployments are automated and successful.

·       Ensure compliance with information security practices and standards to reduce breaches, audit findings, regulatory liability, and legal exposure

·       Ensure appropriate enterprise security solutions are in place to mitigate identified risks, meet business objectives, and satisfy regulatory requirements by engaging with security specialists and other functional area architects.

·       Lead application security reviews and threat modeling, including code review and dynamic testing.

·       Develop automated security testing systems or centralized security libraries that enable developers to write secure code more easily

·       Drive initiatives which scale application security and holistically address multiple vulnerabilities.

·       Some development or scripting experience and skills ( Java \ python )

·       Strong experience working closely with developers

·       Author project plans for security initiatives


 

Set alert for similar jobsSecurity Architect role in Bengaluru, India, Chennai, India, or Pune, India
Uniphore Logo

Company

Uniphore

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 Years

Category

IT Services and IT Consulting

Locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Pune, Maharashtra, India

Qualification

Bachelor

Applicants

Be an early applicant

Related Jobs

Uniphore Logo

Sr. Staff Information Security Analyst/Engineer

Uniphore

Chennai, Tamil Nadu, India

+2 more

Posted: a year ago

We are looking for a highly experienced and knowledgeable individual in the field of Cloud Security to join our team. As a Cloud Security Engineer, you will be responsible for designing, implementing, and maintaining security controls for cloud environments. You will monitor and audit cloud resources for security misconfigurations and vulnerabilities. Additionally, you will be responsible for conducting security assessments and audits to ensure compliance with relevant standards and regulations. Your role will also involve developing security policies, procedures, and documentation. If you have a strong understanding of security principles, technologies, and methodologies, and possess excellent analytical and problem-solving skills, we would love to hear from you.

Celestica Logo

Senior Architect, Information Security - Cloud Security Lead

Celestica

Chennai, Tamil Nadu, India

Posted: a year ago

Summary:  The Senior Architect, Information Security - Cloud Security Lead will identify and own IT Security initiatives and projects. They work closely with Stakeholders to understand the business (security initiatives and compliance) security requirements and risks and work with IT team to implement. They also ensure IT projects/initiatives are part of Security strategy and within IT roadmap. Detailed Description:  Performs tasks such as, but not limited to, the following: Establish and maintain interactive collaboration with IT Security team and Stakeholders and process owners to proactively assess risks Perform Security assessment, evaluate security controls of cloud platforms and cloud deployment Implement and manage security controls protecting the cloud systems and build capabilities against future threats Document Cloud  Security Reference Architectures and roadmaps which provide guidance for Security engineering teams Leads the engagements with Stakeholder and IT Security initiatives and projects (including security governance and compliance) Liaise with the enterprise architecture team to ensure alignment between the security initiatives and projects and security architecture Provides consultancy and guidance in all aspects of cloud security Oversee the deployment and maintenance of IT Security solutions and compliance Evaluate general and specific training needs; deliver training to support the control environment & associated control framework; communicate governance & compliance objectives, fostering a  compliance & risk aware culture Liaise with Security operation teams on cloud incident resolution, change management, and problem management   Knowledge/Skills/Competencies:  Strong background in security architecture, security design and defining security frameworks for the enterprise Experience in designing practical security solutions for multi-cloud based platforms, including identity and access management, data protection, cloud platform security and cyber controls Hands-on experience in Cloud (Microsoft Azure/GCP/AWS ) security architecture, security engineering, or equivalent experience with vendor specific cloud certification. Experience of managing Microsoft Azure, AWS Cloud platforms, GCP would be advantageous Experience in Dev-ops practice and tooling, application security threat modelling & data security. Experience in Terraform, Ansible, Azure Blueprints, ARM Templates and Azure policy or equivalent Advanced knowledge of Active Directory, Single-Sign On (SSO), and Federated Identities.  Knowledge of IT Penetration Testing  Knowledge in IT Risk Management and IT Sox Compliance  Knowledge of IT Security Architecture  Knowledge of IT Compliance Standards and best practices, IT Security Best Practices and IT Governance and Audit Procedures  Knowledge of common information security frameworks and IT controls frameworks, such as ISO/IEC 27001, ITIL, COBIT, NIST Cybersecurity, CIS Controls Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard. Knowledge of global requirements Excellent communication and business writing skills with experience in defining business requirements; ability to communicate security and risk-related concepts to technical and nontechnical audiences  Excellent problem resolution and creative problem solving skills  Strong customer management skills; ability to clearly articulate the role that IT can play in enhancing customer activities  Knowledge of Celestica’s technology, business and IT strategies