13 Secure Architecture Jobs

Join our team at JPMorgan Chase, a leading company in the financial industry, as a Lead Cybersecurity Architect within the Cybersecurity & Tech Controls Team. In this role, you will play a crucial part in developing top-notch cybersecurity solutions for modern software applications on cloud-based technologies. Your responsibilities include identifying and communicating risks, mitigation options, and solutions across various technical areas to support project objectives effectively. As a Lead Cybersecurity Architect, you will foster a security-focused culture within product, technology, and business teams to prioritize sustainable controls and reduce risks significantly. By integrating threat modeling, secure architecture, and code review into agile development practices, you will ensure secure product delivery. It is essential to gain a deep understanding of the product, its strategy, roadmap, and key investments, while also staying updated on emerging technologies and business concepts to enhance the product's cyber risk posture. You will act as a security thought leader by sharing best practices with product and cybersecurity teams and serve as the primary expert on IT Risk and Cyber domains within your product. Monitoring Key Risk Indicators, swiftly managing emerging issues, and collaborating with various stakeholders across the supply chain are integral parts of your role. Additionally, you will work closely with Third-Party Oversight teams to address technology risks, particularly focusing on cloud computing and emerging technologies. To excel in this position, you should possess formal training or certification in Cybersecurity concepts along with at least 5 years of practical experience. Advanced knowledge of cybersecurity architecture, technical processes, and expertise in areas like public cloud, AI, machine learning, or mobile is required. As a solutions-driven self-starter, you should be adept at managing multiple projects under pressure and tight deadlines. Strong analytical skills, the ability to evaluate and recommend technologies for future architecture, and a deep understanding of agile methodologies are essential for success in this role. Preferred qualifications include certifications in Cybersecurity, Cloud, Infrastructure, or Product, familiarity with risk management frameworks and financial industry regulatory requirements, as well as expertise in data security, risk assessment, control evaluation, design, and governance. The ideal candidate will also have a solid understanding of the financial services industry and its IT systems, coupled with a proven track record of implementing effective risk mitigation strategies.,

Join our team at JPMorgan Chase, a global leader in the financial industry, as a Lead Cybersecurity Architect within the Cybersecurity & Tech Controls Team. In this role, you will play a crucial part in developing top-notch cybersecurity solutions for various software applications on modern cloud-based technologies. Your responsibilities include identifying, creating, and communicating risk, mitigation options, and solutions across multiple technical areas within various business functions to support project goals effectively. You will be responsible for fostering a security-focused culture across product, technology, and business teams to prioritize sustainable controls and achieve significant risk reduction. By integrating threat modeling, secure architecture, and code review into agile development, you will ensure secure product delivery. It is essential to gain a deep understanding of the product, its strategy, roadmap, and key investments, and identify unfamiliar technologies and business concepts to uncover hidden issues and enhance the product's cyber risk posture. As a security thought leader, you will share best practices with product and cybersecurity teams, becoming the go-to expert for IT Risk and Cyber domains within your product. In case of emerging issues, you will act swiftly by monitoring Key Risk Indicators, ensuring timely identification, communication, and resolution of issues, and determining root causes. Collaboration with colleagues across the products supply chain, audits, regulatory engagements, risk activities, and Third-Party Oversight teams to manage technology risks, especially in cloud computing and emerging technologies, will be crucial. Qualifications and skills required for this role include formal training or certification in cybersecurity concepts, a minimum of 5 years of applied experience, advanced knowledge of cybersecurity architecture and technical processes, expertise in public cloud, AI, machine learning, or mobile technologies, and the ability to manage multiple projects under pressure. You should also possess strong skills in developing and analyzing business and technical requirements, evaluating and recommending technologies, understanding agile methodologies, and effectively communicating with senior business leaders. Preferred qualifications include certifications in Cybersecurity, Cloud, Infrastructure, or Product, familiarity with risk management frameworks, industry standards, financial industry regulatory requirements, knowledge of the financial services industry and their IT systems, and expertise in data security, risk assessment & reporting, control evaluation, design, and governance with a proven record of implementing effective risk mitigation strategies.,

Responsibilities: Shape and drive the security practice within IoT WoRKS Ability to identify, deploy, and manage complex industrial networking systems. Analyzing and assisting in the secure design and architecture of IoT devices and their associated software Conduct security assessments of Industrial Networks and IoT devices their associated software (firmware, drivers and applications) using industry-standard tools and technique to evaluate the security posture of these solutions and identify vulnerabilities Assessing the security of backend cloud services used by IoT devices, including the communication between the device and backend service Risk ranking of identified threats to prioritize mitigation and remediation activities Working with software designers, developers, and testers to review, assist and recommend changes and solutions to address the security end to end solutions Design security architecture for IoT solutions Build security consulting skills and security architects in the team Identify potential partners and solutions to be developed in IoT Security - Device, Platform and Applications Build leadership position in IoT/OT Security Desired Skills Experience: 10+ years experience in It Security with experience in secure product design, vulnerability management, ethical hacking, and product security testing Should experience on security standards and frameworks ISO27001 , NIST , ISA/IEC62443 etc Should have certification on CISSP, CEH, CSSA ,ISA/IEC62443 Experience with IoT/OT device specific communication/network technologies, such as Wi- Fi, Bluetooth LE, ZigBee, Z-Wave, etc Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and security attack pathologies Network Should have strong exposure to enterprise IAM technologies and also SSO / SAML integrations. Hands on proficiency Industrial Network security implementation using Industrial managed Switches , Industrial Firewalls ,VLAN, remote access etc Active Network Analysis / Deep Packet Inspection LAN/WLAN PROFINET Analysis Planning, Installation and construction, commissioning of industrial networks Consulting Development of solutions for packet data collection for security monitoring solutions platforms Should have experience in addressing top OWASP vulnerabilities and other standard threats Should be customer facing, be able to work with senior leadership in the customer organization conveying security to a non-technical audience. Should possess time management skills and should be able to work under serious deadlines Should be a self-starter and should be able to motivate the team. Leadership Skills: Stakeholder management skills required Change management experience Strategic influencing skills Organizational awareness and networking skills Excellent articulation presentation skills Strong ability to prioritize work and resources across engagements based on short and long-term needs

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes forour clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences foreach other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firms growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary We seek experienced professionals across levels to join the Emerging Technologies team at PwC in India. Openings are available across Bangalore, Gurgaon, Mumbai, Pune, Chennai, Kochi and Kolkata locations. Join our Emerging Technologies team and collaborate with a global group of diverse and skilled professionals. Youll have the opportunity to work on designing cybersecurity architectures, discovering new cybersecurity technologies for industrial environments, and assisting out clients in understanding the cybersecurity risks associated with smart factories and operational fields. Our clients are market-leading companies in various industries at the international level including energy, manufacturing, utilities hospitality, life sciences, and healthcare. Responsibilities: The experienced resource will be integrated into a work team and responsible for: Manage cybersecurity projects, identifying, evaluating, and designing best in class cybersecurity solutions, demonstrating operational excellence, vision and strategic thinking; Execute complex project activities, coordinate part of the team while supporting Partner and other seniors in managing the client; Face and solve customer cybersecurity technology-driven challenges in innovative and effective way; Leverage on technology to provide innovation, operational excellence and new business model to customers; Engage with internal and external stakeholders, both at the HQ and factory/plant level, to strengthen business relations and create business opportunities; and Manage main activities such as: Maturity and/or Technical Assessment, Secure Architecture & Network Review/Design/Implement. Requirements Minimum 2 years of Cyber Security experience, preferably in a Consulting company or OEMs working in any of the Emerging Technologies like IoT/OT, AI.ML, AR/VR, 5G, Quantum Computing, Edge Computing, Blockchain or Cryptocurrency; Should have worked in ICS environment or telecom networking environment for at least 2 years or minimum 2 years of working experience in IT, cybersecurity or strategy and risk management; Expertise in Secure Architecture & Network Design, Technical Analysis, Solutions Identification and roll-out support; Understanding of cybersecurity frameworks, standards, and guidelines such as ISO 27001, NIST 800-53, NIST 800-82, NIST CSF, ISF CSF, ISA62443, ISO21434, ISO26262 and security regulations ; Good knowledge in the following areas: Cyber Security: NGFW, XDR, SRA, SIEM, ZTNA, SSE and Network Management: Routing, Switching, ACL, Security Policies, VLAN, SD-WAN, VPN, SPAN, STP; Interest in IT, business processes and controls for Emerging Technologies; cybersecurity and relevant regulatory and compliance requirements such as NERC, OSFI cybersecurity self-assessment, or three lines of defense models; Strong interest in IT infrastructure, networks, systems, application and appliances used for monitoring, securing, and responding to cyber incidents and attacks; Passion and curiosity for the cybersecurity industry and technology trends, innovations and frameworks; Be an independent and collaborative person who cooperates in one or more project teams to deliver high quality results; An Undergraduate (or higher) degree in IT related studies: Information Security Management, Risk Management, Computer Science or Engineering or other; Curious and adaptable, strong communication, time management, report writing, investigation, and presentation skills; Strong problem solving, organizational and analytical skills, with the ability to articulate complex concepts in a clear and concise manner; and Fluent knowledge of English language written and verbal. Mandatory Skill Sets: Cybersecurity, Emerging Technologies Preferred Skill Sets: Certiifcations :CISSP, GICSP, ISA 62443, CCNP, PCNSA, PCNSE, LPIC-1, RHCSA Years of Experience Required: 2+ Years Education Qualification: Btech, MBA preferred Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Required Skills Information Technology General Controls (ITGC) Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Cloud Security, Communication, Conducting Research, Cyber Defense, Cyber Threat Intelligence, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Malware Analysis, Malware Detection Tools, Malware Intelligence Gathering, Malware Research, Malware Reverse Engineering, Malware Sandboxing + 11 more Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship No Government Clearance Required No Job Posting End Date Show more Show less

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes forour clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences foreach other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firms growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary We seek experienced professionals across levels to join the Emerging Technologies team at PwC in India. Openings are available across Bangalore, Gurgaon, Mumbai, Pune, Chennai, Kochi and Kolkata locations. Join our Emerging Technologies team and collaborate with a global group of diverse and skilled professionals. Youll have the opportunity to work on designing cybersecurity architectures, discovering new cybersecurity technologies for industrial environments, and assisting out clients in understanding the cybersecurity risks associated with smart factories and operational fields. Our clients are market-leading companies in various industries at the international level including energy, manufacturing, utilities hospitality, life sciences, and healthcare. Responsibilities: The experienced resource will be integrated into a work team and responsible for: Manage cybersecurity projects, identifying, evaluating, and designing best in class cybersecurity solutions, demonstrating operational excellence, vision and strategic thinking; Execute complex project activities, coordinate part of the team while supporting Partner and other seniors in managing the client; Face and solve customer cybersecurity technology-driven challenges in innovative and effective way; Leverage on technology to provide innovation, operational excellence and new business model to customers; Engage with internal and external stakeholders, both at the HQ and factory/plant level, to strengthen business relations and create business opportunities; and Manage main activities such as: Maturity and/or Technical Assessment, Secure Architecture & Network Review/Design/Implement. Requirements Minimum 2 years of Cyber Security experience, preferably in a Consulting company or OEMs working in any of the Emerging Technologies like IoT/OT, AI.ML, AR/VR, 5G, Quantum Computing, Edge Computing, Blockchain or Cryptocurrency; Should have worked in ICS environment or telecom networking environment for at least 2 years or minimum 2 years of working experience in IT, cybersecurity or strategy and risk management; Expertise in Secure Architecture & Network Design, Technical Analysis, Solutions Identification and roll-out support; Understanding of cybersecurity frameworks, standards, and guidelines such as ISO 27001, NIST 800-53, NIST 800-82, NIST CSF, ISF CSF, ISA62443, ISO21434, ISO26262 and security regulations ; Good knowledge in the following areas: Cyber Security: NGFW, XDR, SRA, SIEM, ZTNA, SSE and Network Management: Routing, Switching, ACL, Security Policies, VLAN, SD-WAN, VPN, SPAN, STP; Interest in IT, business processes and controls for Emerging Technologies; cybersecurity and relevant regulatory and compliance requirements such as NERC, OSFI cybersecurity self-assessment, or three lines of defense models; Strong interest in IT infrastructure, networks, systems, application and appliances used for monitoring, securing, and responding to cyber incidents and attacks; Passion and curiosity for the cybersecurity industry and technology trends, innovations and frameworks; Be an independent and collaborative person who cooperates in one or more project teams to deliver high quality results; An Undergraduate (or higher) degree in IT related studies: Information Security Management, Risk Management, Computer Science or Engineering or other; Curious and adaptable, strong communication, time management, report writing, investigation, and presentation skills; Strong problem solving, organizational and analytical skills, with the ability to articulate complex concepts in a clear and concise manner; and Fluent knowledge of English language written and verbal. Mandatory Skill Sets: Cybersecurity, Emerging Technologies Preferred Skill Sets: Certiifcations :CISSP, GICSP, ISA 62443, CCNP, PCNSA, PCNSE, LPIC-1, RHCSA Years of Experience Required: 2+ Years Education Qualification: Btech, MBA preferred Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Required Skills Information Technology General Controls (ITGC) Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Cloud Security, Communication, Conducting Research, Cyber Defense, Cyber Threat Intelligence, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Malware Analysis, Malware Detection Tools, Malware Intelligence Gathering, Malware Research, Malware Reverse Engineering, Malware Sandboxing + 11 more Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship No Government Clearance Required No Job Posting End Date Show more Show less

As a member of the Snowflake team, you will have the opportunity to work alongside engineering teams, providing expert leadership and advice on secure architecture, design, and implementation. Your role will involve creating and scaling security products and services that developers love, with a focus on modern languages and technologies in a true multi-cloud/SaaS environment such as AWS, GCP, Azure, Salesforce, and more. You will also consult on AI-Security best practices, collaborate on identifying & mitigating AI-specific risks, and lead with code, automation, and data in all your endeavors. Your contributions will extend across partner teams, with strong support from the business. To excel in this role, you should have experience in building an application security program and a clear vision for its improvement. With over 8 years of experience in threat modeling and secure architecture, you should possess real-world expertise in basic security concepts like Identity, Data protection, Monitoring, and IR in cloud services. Previous experience in working with off-the-shelf SaaS products and services, as well as exposure to AI security strategies and governance frameworks, will be valuable assets. Your ability to manage yourself effectively, learn and identify bugs in various languages (such as Java, JavaScript, Go, and Python), and your hands-on development skills in these languages will be essential. Additionally, expert knowledge of security testing tools and techniques, awareness of industry trends in the Cyber Security world, and strong communication skills for cross-functional collaboration are key attributes for success in this position. Snowflake is experiencing rapid growth, and we are expanding our team to support and accelerate this growth. We are seeking individuals who align with our values, challenge conventional thinking, drive innovation, and contribute to building a successful future for themselves and Snowflake. If you are interested in making a significant impact in the field of cyber security and joining a dynamic team, we invite you to explore opportunities with Snowflake. For detailed information on salary and benefits for positions located in the United States, please visit the job posting on the Snowflake Careers Site at careers.snowflake.com.,

As a member of the Snowflake team, you will have the opportunity to work alongside engineering teams, offering expert leadership and guidance on secure architecture, design, and implementation. Your role will involve creating and scaling security products and services that are developer-friendly and in high demand. You will be tasked with enhancing your skills in securing modern languages and technologies within a multi-cloud/SaaS environment, including AWS, GCP, Azure, Salesforce, and other platforms. Additionally, you will provide consultation on AI-Security best practices and collaborate on identifying and mitigating AI-specific risks. Leading with a focus on code, automation, and data is essential in driving security impact across partner teams, with strong business support. You should have prior experience in building application security programs and possess a clear vision for its improvement. An extensive background (8+ years) in threat modeling and secure architecture is required, along with practical experience in basic security concepts such as Identity, Data protection, Monitoring, and Incident Response in cloud services. Previous exposure to off-the-shelf SaaS products and services is also beneficial. You should be well-versed in AI Security strategies and Governance frameworks, with a proven ability to self-manage and deliver results. A proficiency in identifying bugs across various programming languages, including Java, JavaScript, Go, and Python, is essential. Hands-on development experience in at least one of these languages is preferred. Expertise in security testing tools and techniques, as well as a thorough understanding of industry trends in the Cyber Security field, is required. Strong communication skills and the ability to work collaboratively across functions are essential, with a track record of delivering results and demonstrating ownership. Snowflake is experiencing rapid growth, and we are expanding our team to support and drive this growth further. We are seeking individuals who align with our values, challenge conventional thinking, drive innovation, and envision a future with both personal and organizational growth. If you are ready to make a substantial impact, we invite you to explore the opportunities at Snowflake and join us on our journey of innovation and success. For further details regarding job opportunities in the United States, please refer to the job posting on the Snowflake Careers Site at careers.snowflake.com.,

Let's talk about the team At Resmed, the Enterprise Security team safeguards the systems, data, and technologies that enable our mission to improve lives through connected health. We collaborate across engineering, data science, enterprise architecture and business units to embed security in everything we build. Let's talk about the role We are seeking an experienced Application Security Architect to join our growing Secure Architecture team. In this role, you will focus on designing secure solutions for modern application architectures including AI/ML workloads, APIs and cloud-native systems across hybrid environments. You will partner with cross-functional teams to embed security into solution designs, champion secure development practices and align architecture with Resmeds overall security strategy. This role is ideal for someone who thrives on innovation, thinks like an adversary and believes secure design is critical to scalable growth. Let’s talk about responsibilities Lead security architecture efforts for AI, API and cloud-based applications across AWS, Azure and GCP platforms. Define and evaluate security controls to protect models from adversarial attacks, data poisoning and unauthorized inference. Develop secure design patterns, reusable controls and architecture blueprints aligned with Resmed’s security standards. Partner with data scientists and engineering teams to develop secure ML pipelines, including feature engineering, validation, and anomaly detection mechanisms. Design secure-by-design architecture patterns and reusable controls for APIs, microservices, and distributed cloud environments. Guide the implementation of zero-trust architecture principles across systems, including identity, access, networking, application and data flows. Perform threat modeling, risk assessments and architecture reviews on high-impact projects. Establish detection and response capabilities around AI systems and APIs. Engage with stakeholders across the business to ensure security solutions enable agility, innovation, and growth. Let’s talk about you 10+ years in cybersecurity, with strong experience in cloud-native application and data security. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001), secure software development, and encryption. Experience designing security for distributed systems, APIs, and AI/ML pipelines. Strong knowledge of cloud platforms (AWS, GCP, Azure), API security protocols, and DevSecOps practices. Proven experience in designing and reviewing modern application architectures in agile and data-driven environments. Familiarity with machine learning operations (MLOps), model governance and responsible AI frameworks. Excellent communicator, able to translate complex risks into actionable guidance. Industry certifications like CISSP, CCSP, or cloud security specializations.

Lets talk about the Team Resmeds Enterprise Security Service team plays a pivotal role in enabling secure innovation across our connected health ecosystem. We partner with engineering, product, architecture and operations teams to embed security into every stage of the development lifecycle balancing protection with performance, compliance and user experience. Let’s talk about the Role: We’re looking for a Associate Architect, Enterprise Security to lead the design of secure infrastructure and application architectures across our hybrid cloud environments. This role will focus on ensuring that public, private SaaS platforms and Resmed products are resilient, compliant, and aligned with Resmed’s security strategy. You’ll bring expertise in infrastructure, application, and API security - helping shape secure design patterns for a modern, distributed enterprise. Let’s talk about responsibilities: Design and assess secure architectures across IaaS, PaaS, and SaaS platforms in public, private, and hybrid cloud environments. Collaborate with development, cloud, and enterprise architecture teams to embed security into infrastructure and application design. Lead threat modeling and architecture reviews for high-impact systems, including APIs, web applications, and microservices. Define and promote secure development patterns, including application-layer protections (e.g., WAF, API gateways, secure SDLC, IaC scanning). Contribute to the implementation of zero trust principles across network, identity, and application layers. Develop and assess security controls leveraging technologies such as firewalls, ZTNA, SWG, segmentation, IDS/IPS, DNS security, and encryption. Support continuous cloud security posture management using CWPP, CSPM, and other cloud-native security tools. Drive the creation of standards and policies aligned with frameworks such as NIST, CIS, CSA CCM, and ISO 27001. Stay current on emerging threats, cloud vulnerabilities, AI/ML risks, and evolving regulations relevant to digital health and patient data. Mentor junior team members and support cross-functional knowledge-sharing. Let’s talk about you: 8+ years of experience in cybersecurity, cloud security, or DevSecOps roles, including architectural leadership. Strong understanding of secure infrastructure and application design in cloud-native environments (AWS, Azure, GCP). Experience with web application firewalls (WAFs), API security (OAuth, JWT) and secure SDLC practices. Hands-on experience with technologies like Kubernetes, Terraform, Kafka, and scripting (Python, JavaScript). Familiarity with cloud security frameworks and controls: NIST, CIS Benchmarks, CSA-CCM, ISO 27017. Understanding of regulatory requirements such as HIPAA, GDPR, PCI DSS, and CCPA. Strong communication and collaboration skills, with the ability to influence both technical and business stakeholders.

Job Description Position : KOP Group Lead / Technical Manager (Krones Operating Platform) Location : Bengaluru Who are we looking for? Krones Digital Solutions India is looking for a KOP Technical Group Lead / Technical Manager who will be responsible for developing and maintaining scalable solutions and is able to guide and lead team of software developers. He/she should be able to accompany on solutions throughout by designing, implementing, integrating, and operating. The role will be based out of Bangalore and will directly report to the Head of Product Development, KDSI. What are you in for? (Roles and responsibilities) Your responsibilities would include but are not limited to the below: Technology leadership Develop and maintain scalable software solutions, leveraging cutting-edge software technologies and frameworks. Implement RESTful APIs and microservices to process data from various sources and enable the exchange of information between users and providers. Align the scalability and performance of our backend system to meet the needs of a growing user base. Ensure smooth integration and communication with our platform and cloud components. Ensure security measures are taken to protect the integrity of data and privacy of users. Develop, deploy and manage containers with Docker and familiarity with Kubernetes deployment. Team Management Lead and develop a team of high performing software developers in the successful execution of the Development projects. Own and shape the vision, goal & culture of the Development team and be responsible for the overall growth and development of all the team members. Foster a result-oriented, performance-driven culture by building well defined competency roadmap for your teams, drive the same by setting clear goals and performance metrics and subsequently coach/mentor the teams towards the achievement of the set goals. Institutionalize operating best practices, organization structures, cost management KPIs to bring in efficiency and productivity. What is in it for you? You are a part of a brand-new org. setup with a clean slate and a mission to build a People first organization. You will be part of Krones. Digital community supporting as a KOP Group lead / Technical Manager and will be working beyond borders, with international teams seeking and imparting learning throughshared/individual experiences and knowledge through the community. What are we looking for? (Experience/Qualifications/Skillsets/Must-haves) Education : Bachelors degree in Engineering/Computer Science/Mathematics/Physics or a comparable qualification with 12 to 15 years of relevant experience. Must have requirements for: MANDATORY SKILLS GOOD TO HAVE .NET 6+ (C#) OR Python 3.9+ Secure architecture Linux (Debian) Kubernetes (K3S, K8S) Docker MQTT Helm Open Telemetry AWS IoT Greengrass, EC2, SSM Serverless microservices , microservice architecture SQL / noSQL databases, DBMS *Knowledge of event-driven architecture and cloud-native based environments. *AWS cloud platform and SQL, NoSQL databases, is advantageous. *Proficiency in IoT protocols such as MQTT and OPC UA, with practical experience in their integration. Professional Attributes Good interpersonal and organizational skills Explore latest trends and technologies and have a passion for integrating them into industry-leading applications. Experience in digital product development and agile working methods. Collaborate with team to drive solutions forward and fostering a productive work environment. Ability to coach, mentor and grow the team. Integrity and ethical leadership Result oriented with the ability to establish priorities and deliver through the larger team. Experience of working in a Scrum or Agile environment and understand the methodologies and principals involved. Ability to analyse, goal orientation, motivation, and a structured sustainable way of working. Good Communication skills (Written and verbal).

Skills Required : Secure Architecture and Design, Application & API Security, Cloud & Container Security, Infrastructure & Network Security, Cryptography, Stakeholder Engagement, Mentorship Posted On : Secure Architecture and Design, Application & API Security, Cloud & Container Security, Infrastructure & Network Security, Cryptography, Stakeholder Engagement, Mentorship Education/Qualification : Bachelors or Masters Desirable Skills : cyber security, Cloud Security, Cryptography

Key Responsibilities: • Design and review secure systems and application architectures. • Lead threat modeling, risk assessment, and attack surface analysis. • Advise project teams on security best practices throughout SDLC. • Use SD Elements to capture risks, track remediation, and ensure traceability. • Contribute to architecture boards and governance processes. • Validate secure design for cloud, hybrid, and on-premises environments. Required Skills & Experience: • 7- 9 years in Information Security or related architecture roles. • Experience in VAPT (execution & remediation). • Strong knowledge of application security, secure SDLC. • Hands-on with SD Elements (mandatory). • Expertise in TOGAF, SABSA, or NIST architecture frameworks. • Cloud Security (preferably Azure), DevSecOps knowledge. Certifications (Mandatory/Preferred): • Mandatory: CISSP • Preferred: AZ-500, CCSP Tools/Frameworks Knowledge: • SD Elements, ThreatModeler, Microsoft Defender • TOGAF, SABSA, NIST CSF, OWASP Top 10, MITRE ATT&CK Email ID: akila.s@acesoftlabs.com

You are a highly experienced and visionary security professional with deep expertise in application security, architecture, and secure software development You're not only a strategist and a technical authority, but also someone who remains hands-on when it matters You thrive on solving large-scale security problems, designing resilient security architectures, and enabling engineering teams to ship secure products without friction You lead with influence, partner with engineering and product leaders, and drive scalable security solutions across an enterprise You also play a pivotal role in Cvent's Application Security Research & Engineering (ASRE) program guiding the development of internal tooling, automation, and innovative approaches to secure software at scale In This Role, You Will: Design and own secure application architectures across Cvent's product landscape, including SaaS platforms, mobile apps, APIs, and cloud-native services Define and evolve application security strategy, driving initiatives that align with Cvent's product roadmap and risk posture Lead architecture reviews, threat modeling sessions, and risk assessments for high-impact products and features, including those involving AI/ML pipelines Engineer and advocate scalable security solutions, from reusable libraries and security design patterns to tooling integrations within the SDLC Build and maintain relationships with engineering leaders, product managers, and infrastructure teams to champion security-by-design principles Partner with ASRE to define and drive automation projects, internal tool development, and scalable controls for vulnerability discovery and remediation Serve as the security technical authority during escalations, post-incident reviews, customer audits, and design sprints Provide technical leadership to the broader AppSec team, mentoring Senior and Lead engineers and participating in hiring and capability building Evaluate and introduce new technologies, standards, or frameworks to improve application security and developer experience Heres What You Need: 12+ years of experience in information security, with a strong focus on application security, architecture design, and secure development practices Deep understanding of secure software development lifecycles (SDLC), secure design principles, and modern threat landscapes (including AI/ML risks, supply chain, cloud-native, and microservices) Proven ability to architect secure solutions across multi-tenant SaaS platforms, microservices, and API-driven ecosystems Expertise in performing and leading threat modeling, code reviews, and architecture risk assessments Strong coding and scripting skills (e.g., Python, Java, JavaScript, TypeScript, etc); ability to prototype tools or support ASRE initiatives directly Hands-on experience with security tools and platforms (e.g., SAST, DAST, IAST, SCA, container scanning, IaC analysis) Familiarity with cloud security and native controls (AWS/GCP/Azure), DevSecOps pipelines, and IaC tools like Terraform Excellent communication skills with a proven ability to influence both technical and executive stakeholders Strong grasp of regulatory frameworks and standards such as ISO 27001, SOC 2, PCI, OWASP, NIST 800-53/218, and AI RMF Bonus If You Have: Experience building security frameworks or reference architectures adopted across multiple product teams Research contributions to ASRE-style initiatives, open-source tooling, or internal platform development Knowledge of emerging AI security threats (adversarial ML, model poisoning, privacy leakage, etc) Certifications such as AWS Certified Solutions Architect Associate/Professional, CSSLP, OSWE, GCPN, CISSP, SABSA, or SANS/GIAC Architect-level certification Why you'll Love This Role: You'll define and influence the security architecture of platforms used by thousands of customers worldwide You'll work on high-impact initiatives with the authority to shape how security is done not just today, but for the long term You'll help grow and mentor a world-class AppSec team while staying close to the technology you love You'll drive an engineering-led security culture alongside leadership that supports security investment, research, and innovation