Security Architect

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Identity and Access Management (IAM) Operations

Good to have skills :Microsoft Entra Verified ID, Business CommunicationMinimum
5 year(s) of experience is required

Educational Qualification :15 years full time educationJob
SummaryAs a Team Lead IAM Infrastructure Operations, you will be responsible for leading a team that ensures the stability, security, and compliance of enterprise Identity and Access Management (IAM) infrastructure. The role covers core IAM technologies like PKI, Active Directory, ADFS, smartcard infrastructure, certificate lifecycle management, and includes exposure to modern identity platforms such as Azure Entra ID and Okta.Key Responsibilities- Lead and manage day-to-day operations for IAM infrastructure including:- Microsoft Active Directory, Entra ID / Azure AD, ADFS, and Domain Controller services.- PKI infrastructure components:Enterprise/Subordinate CAs, NDES, Certificate Templates, and autoenrollment.- Certificate lifecycle management for user, device, and service authentication.- Authentication services involving smartcards, crypto cards, and MobilePass solutions.- IAM vulnerability remediation (e.g., BloodHound exposure, AATP sensor health checks).- Provide L3 support and guide the resolution of complex IAM issues across on-prem and cloud environments.- Coordinate and handle technical bridge calls, escalations, and RCA documentation.- Proactively manage CRs, DR drills, and IAM-related audit requirements.- Develop, validate, and deploy automation scripts (e.g., PowerShell, Ansible) to streamline IAM tasks.- Maintain comprehensive documentation for operational runbooks, infrastructure diagrams, and change records.- Collaborate with cybersecurity teams, application owners, and external vendors to ensure secure access architecture.Required Skills &
Qualifications- 5+ years of experience in IAM infrastructure operations with 12 years in a leadership or team lead capacity.- Strong technical expertise in:- Active Directory, Group Policy, and LDAP- Entra ID / Azure AD, ADFS, and Conditional Access Policies- Public Key Infrastructure (PKI), including CA/NDES/CRL management- Smartcard authentication, HSM integrations, and crypto card-based logins- Experience with automation scripting (PowerShell is a must)- Working knowledge of ticketing tools like ServiceNow, Remedy, or JIRA- Excellent communication skills, both written and verbal- Strong problem-solving abilities and proactive issue resolution- Skilled in handling technical calls and escalationsPreferred Qualifications- Hands-on experience or knowledge in:- Okta (SSO, MFA, Lifecycle Management)- PKI deep-dives such as cross-certification, template security, and Root CA management- Certificate Authority platforms (e.g., Microsoft CA, DigiCert, AXIAD)- Microsoft Certifications (SC-300, AZ-500, MS-101) or equivalent- Familiarity with security analytics and governance tools (e.g., Defender for Identity, BloodHound)- Understanding of regulatory frameworks (SOX) Additional Information:- The candidate should have minimum 5 years of experience in Microsoft Active Directory.- This position is based at our Bengaluru office.- A 15 years full time education is required.Qualification
15 years full time education