We are seeking an experienced and strategic Security Architect with a focus on Cloud Security, Application Security, Enterprise Network Security, OT Security and Automotive Security. The ideal candidate will design, implement, and manage robust security frameworks to safeguard enterprise Cloud environments, Applications and Enterprise Networks, OT systems and the 2-Wheelers/3-Wheelers against evolving threats, ensuring compliance with industry standards.
Job Title / Role : Security Architect
Department: D&AI
Section: Cyber Security
Location: Bangalore (Electronic City)
Education Qualification: Bachelor's degree in Computer Science, Information Security, or a related field
Required Experience: 10+ years of relevant experience.
Position Reports to: CISO
Key Responsibilities
1. Security Architecture Design:
- Develop and maintain enterprise-wide security architecture strategies focusing on Cloud, Application, Network, OT and Automotive security.
- Ensure security-by-design principles are integrated into all system and application architectures.
- Guide the implementation of zero-trust architecture principles across systems, including identity, access, networking, application and data flows.
2. Cloud Security
- Architect security solutions for multi-cloud environments (AWS, Azure, Google Cloud) to address risks like misconfigurations , access control, and data loss.
- Implement and enforce security policies for cloud infrastructure, including containerized and serverless architectures.
- Design strategies for identity and access management (IAM) in cloud ecosystems.
- Design and oversee implementation of solutions such as CSPM.
3. Application Security
- Lead security architecture efforts for applications, API’s, and AI systems.
- Perform threat modelling, risk assessments and architecture reviews.
- Design secure-by-design architecture patterns and reusable controls for APIs, microservices, and distributed cloud environments.
- Establish detection and response capabilities around Applications, APIs and AI systems.
4. Network Security
- Design and oversee implementation of secure network infrastructures, including firewalls, IDS/IPS, VPNs, and zero-trust network access.
- Evaluate and recommend technologies for network segmentation, threat detection, and mitigation.
- Ensure proper configurations and monitoring of network devices to protect against threats.
- Evaluate the network designs and incorporate appropriate security measures including but not limited to zone classifications, data flow standardization, remote access security measures etc.
5. Operational Technology (OT) Security
- Design and oversee implementation of secure architecture for OT in manufacturing environments, protecting industrial control systems (ICS), and other critical production assets.
- Collaborate with plant and production leaders to implement security measures that do not compromise production efficiency or safety.
- Lead risk assessments and vulnerability management efforts in OT environments.
6. Automotive Security
- Design and oversee implementation of secure architecture for automotive, focusing on the security of connected vehicles including in-vehicle networks, sensors, and ECUs.
- Ensure compliance with automotive security standards and regulations such as ISO/SAE 21434.
- Lead initiatives to secure embedded systems, telematics, and vehicle-to-everything (V2X) communications.
- Collaborate with R&D teams to integrate security into product development lifecycles for automotive systems.
7. Risk Management & Compliance
- Conduct risk assessments for cloud, application and enterprise network environments; identify vulnerabilities and recommend corrective actions.
- Ensure compliance with security standards / regulatory requirements such as ISO 27001, NIST, CIS benchmarks, DPDPA / GDPR etc.
8. Training and Awareness:
- Educate staff on Cloud, Application and Network security best practices and raise awareness about cybersecurity threats.
- Provide guidance and training to employees (technical team members) to help them address security issues.
9. Collaboration:
- Collaborate with IT teams, application developers, and other relevant departments to ensure that security measures are integrated into all IT and Cloud environments including network, systems and applications.
- Work with vendors and partners to assess and improve the security of third-party systems and services.
10. Documentation:
- Develop detailed security architecture diagrams, policies, and procedures.
- Prepare executive-level reports on security posture, vulnerabilities, and improvement initiatives.
Behavioural competency
a) Good communication skills in English
b) Adaptability & flexibility
c) Problem solving & critical thinking.
