Job
Description
About The Role
Project Role :Security Architect
Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Network Security Operations
Good to have skills :NA
Minimum 3 year(s) of experience is required
Educational Qualification :15 years full time education
Summary:As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and overseeing the transition to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security. Roles & Responsibilities:-Manage, configure, and optimize NAC solutions (Cisco ISE / Aruba ClearPass / Forescout, etc.).-Oversee authentication mechanisms such as 802.1X, MAC Authentication Bypass (MAB), and Certificate-based authentication.-Monitor NAC health, system alerts, node status, and performance metrics.-Design, implement, and maintain access control policies for diverse endpoint types.-Develop and refine network segmentation policies (VLAN assignment, SGT, ACL enforcement).-Create posture assessment and compliance-based access strategies.-Configure and tune endpoint profiling, classification, and device fingerprinting.-Manage onboarding workflows for corporate, guest, and BYOD devices.-Maintain certificate infrastructure used for NAC authentication (PKI, EAP-TLS).-Lead investigation and resolution of NAC-related access issues.-Perform packet captures, RADIUS authentication trace analysis, and log review.-Support L1/L2 teams with escalated authentication failures, profiling gaps, or access outages.-Integrate NAC with SIEM, firewalls, AD/IDP, MDM, EDR, and threat intelligence tools.-Develop automation scripts where applicable (API-based workflows).-Maintain configuration backups, version upgrades, and system hardening.-Produce access compliance reports (unauthorized devices, failed authentications, rogue device attempts).-Ensure alignment with network security policies and regulatory requirements.-Maintain documentation for policies, procedures, and change management. Professional & Technical
Skills:
-Strong hands-on experience with Aruba ClearPass (preferred).-Deep understanding of RADIUS, TACACS+, EAP methods, PKI, and LDAP/AD.-Proficient in 802.1X, Switch/WLC NAC enforcement, and NAD device configuration.-Knowledge of networking fundamentals (LAN/WAN, VLANs, STP, routing basics).-Experience with profiling techniques (DHCP, SNMP, HTTP, CDP/LLDP).-Familiarity with Zero Trust Network Architecture.--Prior experience supporting large-scale NAC deployments (5K–50K endpoints) preferred.-Industry certifications preferred:CCNP Security, Aruba ACCP/ACCPX, Security+.
Additional Information:The candidate should have minimum 3 years of experience in Network Security Operations.This position is based at our Bengaluru office.A 15 years full time education is required.
Qualification 15 years full time education
