Job
Description
Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Identity and Access Management (IAM) Operations Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:Directory Services-Provide support for tickets related to user groups sync, AD sync-Management of AD domains and trusts, OU Management/Delegation, Group Policy Management capabilities-Minor schema updates for the centralized authentication repository-AD schema changes, change management, and nnning-AD sites and services cleanup and maintenance, Inactive/broken server cleanup and demotion (RWs and RODCs), Inactive users and computers cleanup, including AD users and Azure AD guest accounts-Azure AD Connect installation, configuration and maintenance, Azure AD Connect health monitoring, and sync conflicts resolution-Azure AD enterprise apps, app registrations, service principals, API permissions management, and configuration-Azure AD admin consent management and daily review/approvals-Azure AD conditional access policies creation and management-AD\Azure AD local groups and users' management (outside of SailPoint scope), including MSAs and Office 365 resources-Azure AD PIM configuration, management and roles daily maintenance-Maintaining and completion of Quarterly Access Reviews, non-personal accounts password changes, CMDB, and tags maintenanceCertificate Management:-Maintain certificate lifecycle for internal certificates-Generate new certificates before expiration-Renew CA certificates assigned to CA operations (for root and issuing CAs)-Monitor root and intermediate CA validity times and provide support to application teams as required for internal certificate installations-Remediate unmanaged or expired certificates-Identify certificates with compliance issues across 's systems, including certificates expiring in 30/60/90 days-Coordinate with vendor as needed for resolution of product related issues-Perform Root Cause Analysis of major or recurring certificate and cryptographic key incidents and implement fixes when steps can be taken to fix or avoid the incident in the future -Develop and maintain Standard Operating Procedures (SOPs)Experience in tool like MS Active Directory, Entra Active Directory , Active Directory Certificate services Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity and Access Management (IAM) Operations.- Strong understanding of cloud security principles and best practices.- Experience with security tools and technologies.- Knowledge of regulatory compliance requirements.- Hands-on experience in incident response and security incident management. Additional Information:- The candidate should have a minimum of 3 years of experience in Identity and Access Management (IAM) Operations.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education
