information security architect

Hi all ,

we are looking for Information Security Architect

Location: DTICI (Daimler Truck Innovation Center India),

Bangalore Experience Required: 79 years

Certifications:
• Mandatory: CISSP (Certified Information Systems Security Professional)
• Preferred/Added Advantage: AZ-500 (Microsoft Azure Security Technologies), CCSP (Certified Cloud Security Professional) About DTICI Daimler Truck Innovation Center India (DTICI), headquartered in Bengaluru, came into existence on December 01, 2021. DTICI is a Innovation hub of Daimler Truck AG focused on Product Engineering and IT. Daimler Truck AG is a pioneer of commercial vehicles, being one of the largest commercial vehicle manufacturers in the world. In line with the global changes, DTICI was formed with the intention of complete dedication to the parent company, Daimler Truck AG. At DTICI, we are committed to enabling a diverse and inclusive work environment and to provide all our employees with learning and development opportunities. Role Overview We are seeking a technically strong and hands-on Information Security Architect to drive security design, threat modeling, and architecture reviews across multiple projects. The ideal candidate will support teams with technical security requirements, document risks using SD Elements, and align architectural decisions with security best practices and frameworks. While this role does not directly involve conducting Vulnerability Assessment and Penetration Testing (VAPT), prior experience in these areas is essential to understand potential risks and recommend effective security controls. Key Responsibilities
• Design and review secure system and application architectures.
• Conduct and support threat modeling and risk assessment activities.
• Identify and document attack surfaces and potential vulnerabilities during design reviews.
• Act as a security advisor to project and architecture teams throughout the development lifecycle.
• Capture and manage technical security observations in SD Elements, ensuring traceability and remediation tracking.
• Engage with stakeholders across development, architecture, and infrastructure teams to embed security into solution design.
• Align solutions with enterprise architecture frameworks (e.g., TOGAF, SABSA) and internal security policies.
• Participate in architecture review boards and security governance forums.
• Support secure design validation for cloud, on-prem, and hybrid environments. Required Skills and Experience
• 79 years of experience in information security or architecture-related roles.
• Strong background in application security, secure development lifecycle, and architecture design.
• Hands-on experience in threat modeling and understanding of attack surfaces.
• Past experience in VAPT execution and remediation handling (even though not part of the current responsibilities).
• Experience using SD Elements for security requirements and issue tracking is mandatory.
• Proficient in architecture frameworks such as TOGAF, SABSA, or NIST.
• Good knowledge of cloud security (preferably Azure) and secure DevOps practices.
• Excellent communication skills to collaborate with global stakeholders and technical teams. Tools and Frameworks Knowledge (Preferred)
• Tools: SD Elements, ThreatModeler, Microsoft Defender, architectural modeling tools
• Frameworks: TOGAF, SABSA, NIST CSF, OWASP Top 10, MITRE ATT&CK What You'll Get
• A chance to work with a global leader in the commercial automotive sector.
• A collaborative environment driving innovative and secure vehicle technologies.
• Exposure to diverse projects in an enterprise-grade security setup.

Mandate Skills – Information Security Architect (DTICI)

Here's the short, focused mandate list (ideal for screening / Naukri JD):

• Certification: CISSP (mandatory); AZ-500 / CCSP (preferred).
• Security Architecture & Design – application, infrastructure, and cloud.
• Threat Modeling & Risk Assessment – hands-on experience.
• SD Elements – security requirements tracking (must-have tool).
• VAPT Knowledge – prior experience in execution/remediation (understanding risks).
• Architecture Frameworks – TOGAF, SABSA, NIST.
• Cloud Security – preferably Azure; exposure to secure DevOps practices.
• Application Security & SDLC – secure development lifecycle, attack surface analysis.
• Stakeholder Management – ability to guide dev/infra/architecture teams.
• Excellent Communication Skills – for global stakeholder collaboration.