Cloud Application Security Architect

Zycus is looking for a passionate Cloud Application Security Architect with 12 to 18 years of experience in End-to-End Application Security, preferably from a development background. The Cloud Security Architect leads the design and development of innovative security architectures for protecting data deployed in various cloud and hybrid cloud environments. This position will

directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around SaaS-based applications across all layers Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS). The Cloud Security Architect will serve as the central point of contact for Enterprise Security for other technology teams within Zycus on all matters related to cloud and application security. The role involves identifying opportunities and risks, developing security solutions that align with business goals, and protecting Zycuss intellectual property globally.

Key Responsibilities Include:

• Security Architecture Design: Architect and develop security frameworks for cloud and hybrid environments, including AWS, Azure, and physical data centers. Design cloud-native solutions with appropriate security controls based on business

needs.

• Leadership & Representation: Act as the ambassador and senior technical representative of Enterprise Security within cross-functional teams to ensure secure implementation of cloud-based applications.
• Collaboration & Integration: Work with Engineering, Infrastructure, and Application Development teams to recommend, select, and integrate secure technology solutions into Zycus environments.
• Standardization & Governance: Develop and maintain cloud and application security standards in collaboration with key stakeholders.
• Knowledge Sharing & Mentorship: Lead technical forums, mentor junior team members, and drive security awareness through formal and informal training initiatives.
• Customer & Sales Support:

- Respond to RFPs (Request for Proposals), security questionnaires, and due diligence documents to address customer specific cloud and application security concerns.

- Attend customer meetings and calls to represent Zycuss security posture and address technical security queries related to the cloud, application, infrastructure, and compliance frameworks.

Technology Strategy: Contribute to the development of long-term cloud security technology roadmaps in collaboration with service and business teams.

EXPERTISE AND QUALIFICATIONS

• 12 to 18 years of overall experience, with 68 years in Security Architecture or Engineering roles.
• Strong background in Cloud platforms (AWS preferred; Azure a plus).
• Experience with security assessment tools and methodologies including VAPT, Web Application Scanners (e.g., Veracode,IBM AppScan), Network Scanners (e.g., QualysGuard, Nessus).
• Familiarity with SIEM (QRadar), DLP (Digital Guardian), CASBs, firewalls (e.g., Palo Alto), sniffers (e.g., Wireshark), and other security tools.Hands-on experience with secure software development practices, threat modeling, IAM, cryptography, and certificate management.
• Knowledge of authentication mechanisms like OAuth, OpenID, SAML, etc.
• Strong understanding of compliance frameworks such as SSAE 16 SOC1, SOC2, and PCI-DSS.
• Proven experience in responding to customer security requirements and effectively communicating technical concepts to non-technical stakeholders.
• Ability to work independently and collaborate in cross-functional teams.

Preferred Qualifications:

• Excellent Java EE development experience; knowledge of middleware and integration platforms (e.g., ESB).
• Familiarity with mobile platform architectures (iOS, Android) and their integration with cloud services.
• Deep understanding of SSL/TLS protocols and certificate-based authentication.
• Security certifications related to cloud and application security (e.g., CCSP, AWS Security Specialty, CISSP).
• Experience representing technical perspectives during customer audits, pre-sales calls, and vendor evaluations.