Kshema - Principal Security Architect - DevSecOps

3 weeks ago


Hyderabad, Telangana, India Kshema General Insurance Limited Full time

POSITION OVERVIEW :


Kshema General Insurance is seeking a Principal Security Architect to join our security organization. This role reports to the Chief Technology Officer and will play a critical role in shaping and executing Kshemas cloud security strategy across a diverse and evolving technology landscape.

The role will work closely with development teams, product teams, and others across the organization to integrate security into the delivery lifecycle from design through deployment.

This person will play a key role in defining security requirements, performing application security assessments, and providing developers with remediation & RESPONSIBILITIES :

- Work independently with developers, system/network engineers, product owners, and other colleagues to ensure secure design, development, and implementation of applications, infrastructure, and networks.

- Participate in engineering projects to identify threats and vulnerabilities in our cloud infrastructure and system architectures.

- Define cybersecurity requirements and security concepts and work with engineering teams to successfully deliver business solutions.

- Perform security design reviews of cloud systems, and networks.

- Provide remediation guidance and recommendations to systems administrators.

- Develop enterprise standards based on security best practices.

- Demonstrate deep expertise in Azure and either AWS or Google Cloud Platform (GCP), including native security services.

- Design secure cloud-native and hybrid architectures, including zero trust, micro-segmentation, and secure access patterns.

- Design secure VPCs, firewalls, VPNs, and secure connectivity between on-prem and cloud.

- Protect data utilizing Encryption (at rest, in transit, and in use), key management (KMS, HSM), tokenization, and data classification.

- Integrate security into CI/CD pipelines, infrastructure as code (IaC) scanning, and container security (e., Kubernetes, Docker).

- Conduct threat modeling, risk assessments, and security reviews for cloud workloads.

- Define and drive cloud security strategy aligned with business and IT goals.

- Create architecture diagrams, security design documents, and architecture decision records.

- Closely work with CISO in evaluating technology initiatives and projects to determine advanced cybersecurity requirements and controls necessary to comply with company policies, standards, and industry best practices.

- Demonstrate best practices, create proofs-of-concept and propose solutions to Customers Software and Infrastructure Architects and provide strategic technical direction across the development and infrastructure teams.

- Build and sustain good working relationships with development and infrastructure teams and involve them in the overall application and cloud Security Technology strategy.

- Develop security related user stories and product specific threat models for products, as well as CI/CD pipelines and Develop technical security requirements for the business and see them through the development lifecycle.

- Collaborate with business contacts to ensure third-party cloud applications comply with our standards, controls, policies, and REQUIREMENTS :

- Bachelors degree in computer science or business with emphasis in IT or the equivalent combination of education, training and work experience.

- Requires 10+ years of experience in cybersecurity, with at least 4 years focused on cloud security architecture.

- Proven experience designing and securing solutions in Azure (preferred), and/or AWS.

- Deep understanding of cloud-native services, container security (e., Kubernetes), and serverless architectures.

- Strong knowledge of DevSecOps practices and secure software development lifecycle (SSDLC).

- Familiarity with compliance frameworks such as NIST, ISO 27001, SOC 2, HIPAA, and PCI-DSS.

- Advanced knowledge of IAM principles, federation, SSO, RBAC/ABAC, and privileged access management.

- Relevant certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer, CISSP, or CCSP.

- Hands-on practical experience high quality threat models and knowledge of MITRE framework, STRIDE framework and kill chains.

- Deep understanding of network protocols, operating systems, databases, applied cryptography, least privilege, zero trust principles, identity & access management, and other core information security concepts.

- Hands-on experience in performing threat modeling for applications, identifying threats, and suggesting optimal mitigation strategies.

- Strong understanding of threat modeling methodologies (e., STRIDE, DREAD, PASTA).

- Proficiency in using threat modeling tools (e., Microsoft Threat Modeling Tool, Threat Modeler, OWASP Threat Dragon).

- In-depth knowledge of common security vulnerabilities (e., OWASP Top Ten, CVEs) and attack EXPERIENCE :

- Experience in regulated industries (e., financial services, insurance, healthcare).

- Strong communication and leadership skills, with the ability to influence technical and non-technical stakeholders.

- Experience leading security architecture programs or initiatives at the enterprise level.

- Experience with Container security platforms.

- Experience incorporating security policy into Infrastructure as Code.

(ref:hirist.tech)

  • Hyderabad, Telangana, India Kshema General Insurance Limited Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Position OverviewKshema General Insurance is seeking a Principal Security Architect to join our security organization. This role reports to the Chief Technology Officer and will play a critical role in shaping and executing Kshemas cloud security strategy across a diverse and evolving technology landscape.The role will work closely with development teams,...

  • Reinsurance Manager

    3 weeks ago


    Hyderabad, Telangana, India Kshema General Insurance Limited Full time

    About the Company - Kshema General Insurance Limited (Kshema) was established in 2018 and is India's only Digital Agri Insurance Company catering to farmers/cultivators in the Agriculture Sectors. Kshema enables cultivators with resilience from financial distress due to extreme climate events and perils through localised insurance products. Kshema is...


  • Hyderabad, Telangana, India Kshema General Insurance Limited Full time

    About the Role : At Kshema, we are re-imagining agricultural insurance with the power of Public Cloud, GIS, Remote sensing and cutting-edge AI-based algorithms to assess, model and price insurance risks for farmers adequately. We are taking the latest advances in Mobile, Geospatial technologies and the web to empower the next generation of agricultural...


  • Hyderabad, Telangana, India Response Informatics Full time

    Position: Security Architect / Security ReviewerExperience: 3-5 yearsLocation: [Onsite/Remote/Hybrid] - Preferable Onsite.Role OverviewWe are seeking an experienced Security Architect with expertise in Cloud Security, NetworkSecurity, and Architecture Security Reviews. This role involves performing deep securitydesign reviews, identifying risks, and...


  • Hyderabad, Telangana, India Response Informatics Full time

    Position: Security Architect / Security Reviewer Experience: 3-5 years Location: (Onsite/Remote/Hybrid) - Preferable Onsite. Role Overview We are seeking an experienced Security Architect with expertise in Cloud Security, Network Security, and Architecture Security Reviews. This role involves performing deep security design reviews, identifying risks, and...

  • DevSecOps Engineer

    1 day ago


    Hyderabad, Telangana, India Tekgence Inc Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Job Title: DevSecOps Engineer – AWS & AzureLocation: Hyderabad (5days work from Office)Engagement: 6-Month Contract and extendableAbout the RoleWe are seeking a highly skilled DevSecOps Engineer with strong expertise in AWS, Azure, and Cloud Security to collaborate with WWT in supporting PG&E. This role will focus on enabling secure cloud operations,...

  • Devsecops Engineer

    6 days ago


    Hyderabad, Telangana, India World Wide Technology Full time ₹ 8,00,000 - ₹ 24,00,000 per year

    World Wide Technology Holding Co, LLC (WWT) is a privately held global technology integrator and supply chain solutions provider. Through our culture of innovation, we inspire, build and deliver business results, from idea to outcome.Based in St. Louis, WWT works closely with industry leaders such as Cisco, VMware, NetApp, Dell EMC, HPE and several others,...


  • Hyderabad, Telangana, India Amgen Full time ₹ 2,00,00,000 - ₹ 2,50,00,000 per year

    Career CategoryInformation SystemsJob Description Join Amgen's Mission of Serving PatientsAt Amgen, if you feel like you're part of something bigger, it's because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do.Since 1980, we've helped pioneer the world of biotech in our fight against the world's toughest...

  • Devsecops Engineer

    1 day ago


    Hyderabad, Telangana, India Disa Consulting Services Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Position: Senior DevSecOps EngineerLocation: Hyderabad, India. 100% onsite in Hyderabad, India from Day1.Shift timing: 1 pm IST- 11 pm ISTRequired Skills:AWS and Azure DevSecOps Terraform Cloud Security System mgr IAM guardrails- have a good understanding and help with implementation Wiz


  • Hyderabad, Telangana, India Quest Software Full time

    Job DescriptionOverviewJob Title: Principal Engineer Security & Cloud Engineering (Product & SC)Location: HybridExperience: 10+ yearsEmployment Type: Full-timeWe are looking for a Principal Engineer to lead Security and Cloud Engineering efforts for our enterprise Java product with both On-Prem and SaaS deployments. This is a hands-on leadership role driving...