Cyber Security Architect

Job Description

Company Profile: Job Title: Security Architect Position: Associate Consultant Experience:8+Years Category: Software Development/ Engineering Main location: Bangalore Position ID: J0625-0283 Employment Type: Full Time Job Description : Role description We are looking for a highly experienced Senior Security Architect to lead the design and governance of security solutions across infrastructure, application, and cloud environments, while ensuring alignment with GRC (Governance, Risk, and Compliance) frameworks and supporting Security Operations (SOC) initiatives. The ideal candidate will be responsible for developing holistic and scalable security architectures that proactively manage risks and meet evolving compliance requirements. Security Architecture Develop, document, and maintain enterprise-wide security architectures covering on-premise, cloud, and hybrid environments. Define security design principles and architecture patterns for infrastructure, applications, and APIs. Integrate security into enterprise architecture and solution development lifecycle (SDLC, CI/CD). GRC - Governance, Risk, and Compliance Lead security governance initiatives, establish policies, standards, and procedures. Perform risk assessments, control gap analysis, and mitigation planning. Ensure compliance with regulatory and industry standards (e.g., ISO 27001, NIST CSF, GDPR, HIPAA, PCI-DSS, SOC 2). Coordinate with internal audit, risk, and legal teams on security compliance activities. SOC & Threat Intelligence Collaborate with SOC teams on threat detection strategies and incident response plans. Provide architectural input on SOC tools including SIEM, SOAR, UEBA, EDR/XDR, and threat intel platforms. Develop threat models, security use cases, and logging/alerting architectures for enterprise monitoring. Infrastructure Security Architect security solutions for networks, servers, endpoints, storage, and data centers. Implement Zero Trust principles, network segmentation, and infrastructure hardening. Oversee security controls in virtualization and containerized environments (e.g., Docker, Kubernetes). Cloud Security Design and enforce security controls in AWS, Azure, and/or GCP environments. Implement Cloud Security Posture Management (CSPM), IAM, encryption, and secure workload designs. Ensure compliance with cloud shared responsibility models and perform cloud-specific risk assessments. Application Security Integrate security into SDLC and DevSecOps pipelines. Oversee static/dynamic code analysis (SAST/DAST), secure coding practices, and API security. Collaborate with development teams to resolve vulnerabilities and establish secure design patterns. Stakeholder Collaboration Act as a trusted security advisor to technology and business teams. Present security architecture and risk findings to senior management and executive stakeholders. Lead security design reviews and architectural governance forums. Qualifications & Skills Must-Have: Bachelors or Master s degree in Cybersecurity, Information Systems, Computer Science, or related field. 10+ years of experience in information security, with at least 5+ years in a security architecture role. Proven experience in security architecture across infrastructure, cloud, and applications. Strong understanding of GRC practices and SOC operations. Technical Expertise: Security technologies: SIEM, SOAR, IAM, DLP, EDR, CASB, VPN, WAF, firewalls. Standards: ISO 27001/2, NIST CSF/RMF, OWASP, MITRE ATT&CK. Tools: Splunk, Sentinel, CrowdStrike, Qualys, Tenable, Terraform, Jenkins, GitLab CI/CD. Cloud platforms: AWS, Azure, GCP (certification preferred). DevSecOps: SAST, DAST, IAST, SCA, container security, IaC scanning. Certifications (Preferred): Must Have: CISSP, CISM, or equivalent Preferred: AWS/Azure Security Specialty, CCSP, TOGAF, CRISC, OSCP, SABSA Key Competencies Strategic thinking with hands-on capability Strong analytical and problem-solving skills Excellent communication and stakeholder engagement Team leadership and mentoring abilities Behavioural Competencies : Proven experience of delivering process efficiencies and improvements Clear and fluent English (both verbal and written) Ability to build and maintain efficient working relationships with remote teams Demonstrate ability to take ownership of and accountability for relevant products and services Ability to plan, prioritise and complete your own work, whilst remaining a team player Willingness to engage with and work in other technologies Note: This job description is a general outline of the responsibilities and qualifications typically associated with the Virtualization Specialist role. Actual duties and qualifications may vary based on the specific needs of the organization. Skills: Vulnerability Assessment(IAVA) .