Security Architect

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Managed Cloud Security Services

Good to have skills :NAMinimum
7.5 year(s) of experience is required

Educational Qualification :15 years full time education
SummaryThe ideal candidate will lead a team responsible for continuously monitoring, assessing, and improving the security posture of the organization's multi-cloud environments. This role will oversee the detection and remediation of misconfigurations, enforce security and compliance policies, and ensure that all cloud deployments align with organizational and regulatory standards.Roles and ResponsibilitiesContinuously monitor and assess cloud assets and resources across Azure, AWS, and Ali Cloud for misconfigurations and non-standard deployments using Divy Cloud and similar toolsManage and enforce mandatory security policies for new and existing cloud servicesMonitor and maintain cloud compliance policies in alignment with security and regulatory requirementsAnalyze, prioritize, and manage alerts and incidents related to cloud workloads identified by CSPM platformsOversee the end-to-end operations and escalation process for cloud security alerts and incidentsGenerate and deliver executive and detailed reports on vulnerabilities, compliance issues, and cloud security statusManage Role-Based Access Control (RBAC) policies; maintain cloud roles and entitlementsManage and maintain cloud network security policies, ensuring consistent enforcement across environmentsProvide remediation guidance and best practice recommendations to DevOps and software development teams to address identified issuesRegularly produce and distribute cloud security posture reports as per agreed timelines
Professional & Technical SkillsStrong knowledge of cloud security frameworks, standards, and best practicesProven experience in using CSPM tools (Divy Cloud, Tripwire) for continuous monitoring and complianceExpertise in managing cloud security policies, RBAC, and network security controlsAbility to analyze security alerts, manage incidents, and guide remediation activitiesExcellent stakeholder management and communication skills to interface with technical and non-technical audiencesStrong analytical and problem-solving skills, with an ability to work in a fast-paced and evolving environment.Primary SkillCloud Security Posture Management (CSPM)Experience12+ years in cybersecurity operations, including 8+ years leading a security-related projectAbility to work across teams and manage deliverables in matrix environmentsA strategic yet practical approach to solving security and governance challengesAbility to stay current on emerging threats, technologies, and best practicesEducational QualificationBachelors degree in computer science, Information Security, or related field.Industry certifications are strongly preferred:CCSP / CISM or other relevant cloud and security certifications.Vendor certifications such as, AWS/Azure Security Specialty, Tripwire vulnerability management or training such as InsightCloudSec documentation and labs etc.Professional & Technical
Skills:

CSPM (Cloud Security Posture Management):Continuous assessment of cloud assets for misconfigurations and non-standard deployments using Divvy Cloud; policy enforcement across Azure, AWS, and Ali Cloud.Cloud Compliance & Reporting:Monitoring and analysis of cloud compliance alerts; generation of executive and operational reports on vulnerabilities and policy violations.Cloud Identity & Network Security:RBAC policy management, cloud role entitlement governance, and enforcement of network security baselines across multi-cloud environments.Incident & Alert Management:Prioritization, triage, and escalation of cloud workload incidents; end-to-end operations support and remediation guidance for DevOps teams.Tools & Platforms:Divy Cloud, Tripwire, Azure, AWS, Ali Cloud.Must-Have

Skills:

Expertise in Azure, AWS, and Ali Cloud environmentsStrong experience with Tripwire and Divy Cloud (or similar CSPM tools)Deep understanding of Cloud Security Posture Management (CSPM), misconfiguration detection, and policy enforcementStrong understanding of ITIL-based Incidents, Problem, and Change management processes.Good-to-Have

Skills:

Experience with containers and Kubernetes securityFamiliarity with Infrastructure as Code (IaC) securityFamiliarity with ITSM tools like Service Now
Qualification
15 years full time education