Job Description

A Security Architect with industry experience of 10+ years with hands-on experience in various security technologies like Identity and Access Management, Entitlement and Role Management, Privileged Identity and Access Management, Key Management, Vulnerability Management, Data and Information Protection and Cloud Security. The individual should be flexible with working hours and open to travelling to client locations as and when required. The individual will be expected to provide architectural guidance to the product team in ISSQUARED Inc. and lead and execute customer engagement projects from inception to completion. Responsibilities - Architect /design and implement various security solutions for clients Architect /design and implement and integrate various security solutions for ISSQUARED. Provide security road maps working with client executives, present these roadmaps to C-Level executives at clients Perform security and vulnerabilities assessment for ISSQUARED clients and provide remediation strategy with timelines & budgets. Run proof of concept solutions and provide comprehensive security solutions to customers. Engage with vendors for product evaluation and assessments, help customers design their security controls, architect security solutions and lead the team to successfully complete each project. Provide technical training to onshore/offshore teams on special client projects and technologies, security trends and industry best practices. Should be extremely analytical and willing to step up and take lead in troubleshooting problems, carry out after hour support, and jump on escalation calls as required by the job. Experience and familiarity of working with various audit teams (SOX, HIPAA, etc.) and willingness to create and maintain technical documentation such as SOPs, design documents, operational drawings. Technical requirements - Expertise in the following Identity Management products is a must - IBM Security Identity Manager, IBM Security Identity Governance and Intelligence, SailPoint IdentityIQ and Oracle Identity Manager. The position requires in-depth knowledge of product APIs and customization capabilities, experience with product deployment, L3 support and integration with customer applications/platforms. Expertise in the following Single Sign-On and Federation products is a must - IBM Security Access Manager, IBM Security Federated Identity Manager, CA Siteminder, Okta, Ping Identity and Oracle Access Manager. Knowledge and understanding of Kerberos, SAML 2.0, OAuth is mandatory. Expertise on Privileged Identity Management products is a must - Beyond Trust and CyberArk. Knowledge of IBM Security Privileged Identity Manager is a plus. Knowledge and administrative experience of the following Directory services/products is critical - Microsoft Active Directory, Azure Active Directory, IBM Directory Server and Oracle Directory Server. Deep understanding of Cryptography and Key Management is a must. Must have experience in administrating Certification Authorities (CA) and Hardware Security Modules (HSM). Must be familiar with PKIX, PKCS, SSL, TLS, S/MIME standards. Strong background in network and security and tools, including IDS/IPS, NAC, DLP, VPN, firewall audit, endpoint, anti-malware, database audit and monitoring. Administration experience of Guardium, Cylance, Symantec endpoint protection is required. Extensive experience in Security Information and Event Management (SIEM). Hands on experience with QRadar and Splunk, knowledge of LogRhythm, ArcSight, ELK will be beneficial. Solid knowledge and understanding of enterprise architecture styles, including Service Oriented Architecture (SOA), web and mobile architectures, client/server architecture, business intelligence architectures, messaging and integration architectures. Familiar with private/public/hybrid cloud models and technologies. Needs to have at least five years of experience in scripting and application development (PowerShell, Perl, Python, Java, C#). Experience in IBM Security Directory Integrator is a must. In addition, candidate must possess fair amount of knowledge of web applications/platforms security and testing. Good working knowledge of security industry standards (ISO 17799, ISO 27001/2, ISO 31000, NIST 800 series, etc.) is a must. Ability to perform assessments and provide remediation plan for compliance with Industry standards is a must. Qualification - Master s degree in Information Systems/Computer Science/related and work experience of 8 years in Security space ORBachelor s degree in Information Systems/Computer Science/related and work experience of 12+ years in Security space Related industry certifications preferred