Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Managed Cloud Security Services
Good to have skills : NA
Minimum 2 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: We are seeking a highly experienced and technically proficient Cloud Security Specialist to lead and advise on the implementation, optimization, and governance of cloud security solutions across Microsoft CASB and CSPM platforms. The ideal candidate will bring deep expertise in cloud security architecture, policy management, and incident response across AWS, Azure, and GCP environments. This role is critical in ensuring the organization’s cloud infrastructure remains secure, compliant, and resilient Roles & Responsibilities: -CASB (Cloud Access Security Broker): -Real-time threat monitoring, policy lifecycle management, incident triage and investigation using Microsoft CASB. -Cloud Security Posture Management (CSPM): -Continuous assessment of multi-cloud environments (Azure, AWS, Ali Cloud) for misconfigurations and compliance gaps using DivvyCloud; enforcement of cloud security policies and RBAC governance. -Cloud Security Operations: -Alert triage, incident lifecycle management, and remediation support for DevOps teams; generation of executive-level vulnerability and compliance reports. -Cloud Network & Identity Security: -Role-based access control (RBAC) policy management, cloud network segmentation, and enforcement of security baselines across cloud platforms. -Tools & Platforms:Microsoft CASB, Divy Cloud, Tripwire, Azure, AWS, Ali Cloud. -Experience with containers and Kubernetes security -Familiarity with Infrastructure as Code (IaC) security, CI/CD pipeline, DevSecOps -Cloud-native security tools (e.g., AWS Config, Azure Policy, GCP Security Command Center). Professional & Technical Skills: -Real-time monitoring of user activity in CASB and data movement in cloud apps. -Policy enforcement for data loss prevention (DLP), access control, and threat protection. -Integration with Microsoft Defender and other security tools for incident response. -Continuous assessment of cloud resources for misconfigurations using Divvy Cloud. -Automated remediation workflows and policy enforcement. -Role-based access control (RBAC) and cloud network security management -Generating compliance and vulnerability reports for audits and executive review. -Networking, encryption, and logging best practices Cloud Access Security Broker – Microsoft CASB: -Provide subject matter expertise in the deployment and optimization of Microsoft CASB. -Lead continuous and real-time monitoring to detect and mitigate malicious activity across cloud services. -Oversee the development and refinement of built-in policies and templates. -Manage configuration and policy lifecycle: additions, updates, and deletions. -Support and guide security incident investigations using CASB insights and telemetry. Cloud Security Posture Management (CSPM): -Continuously assess and monitor cloud assets in AWS, Azure, and GCP for misconfigurations and non-standard deployments using Divy Cloud. -Define and enforce mandatory security policies for newly released cloud services. -Maintain and evolve cloud compliance policies in alignment with enterprise security requirements. -Analyze and prioritize alerts and incidents related to cloud workloads; guide resolution strategies. -Manage the full lifecycle of cloud security incidents, including escalation and root cause analysis. -Generate and present executive-level and technical reports on vulnerabilities and compliance posture. -Govern RBAC policies and oversee cloud role entitlements across platforms. -Maintain cloud network security policies and ensure alignment with architectural standards. -Provide expert remediation guidance to DevOps and development teams, promoting secure-by-design practices. -Deliver regular reporting and insights on cloud security posture and trends. - Experience in cybersecurity, including substantial hands-on expertise in cloud security as a Specialist or in an advisory capacity. -Demonstrated ability to lead cross-functional initiatives and influence cloud security posture across large-scale environments. -Strong analytical and communication skills with the ability to translate technical risks into business impact Additional Information: - The candidate should have minimum 2 years of experience in Managed Cloud Security Services. - This position is based at our Gurugram office. - A 15 years full time education is required.