Security Architect

 About The Role  

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Security Threat Hunting

Good to have skills :NA
Minimum 5 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:The Threat Hunter (IOC-Based Hunts) is responsible for proactively identifying potential threats within the environment by leveraging indicators of compromise (IOCs), threat intelligence, and telemetry from security tools. This role focuses on structured hunts driven by malicious IPs, domains, hashes, file paths, and behavioral indicators shared by threat intel sources. Roles & Responsibilities:-Conduct structured threat hunts using IOCs from internal and external intelligence sources.-Query SIEM, EDR, NDR, DNS, firewall, proxy, and cloud logs to identify indicators matching known threats.-Validate IOC hits, assess impact, and determine malicious vs. benign activity.-Prioritize hunts based on severity, threat actor relevance, and environmental exposure.-Ingest, parse, and operationalize IOCs from feeds such as ISACs, OEM feeds, commercial TI, and open-source intel.-Map IOCs to relevant attack campaigns, malware families, and known TTPs.-Maintain an up-to-date IOC repository and enrichment workflow.-Develop hunt queries, dashboards, and detection rules to identify IOC-related behaviors.-Tune existing detections to reduce false positives and improve fidelity.-Analyze endpoint, network, and cloud telemetry for lateral movement, persistence, command & control, and data exfiltration indicators.-Work with SOC analysts to validate, triage, and escalate findings.-Support Incident Response with context from IOC hunts and pivot data.-Provide post-hunt recommendations to SOC, Detection Engineering, and IR teams.-Document hunt hypotheses, methodology, findings, and recommended remediation steps.-Prepare weekly and monthly hunt reports with metrics and trend analysis.-Maintain repeatable IOC-based hunt playbooks.Professional & Technical
Skills:

-Strong ability to craft hunt queries, SPL/KQL/QRadar AQL, etc.-Familiarity with EDR telemetry (CrowdStrike, Defender ATP, Carbon Black, SentinelOne).-Understanding of network logs (DNS, proxy, firewall, NetFlow, NDR).-Solid knowledge of IOCs:IPs, domains, URLs, hashes, registry keys, mutexes, file paths.-Understanding of MITRE ATT&CK and common threat actor TTPs.-Ability to enrich IOCs using tools like VirusTotal, AbuseIPDB, WHOIS, OTX, GreyNoise, etc.-Threat intel certifications (SANS FOR578, Cyber Threat Intelligence Analyst)
Additional Information:

The candidate should have minimum 5 years of experience in Security Threat Hunting.

This position is based at our Bengaluru office.

A 15 years full time education is required.
 Qualification 15 years full time education