Lead Software Architect II

Job Description
Security Architect JD:

Job Description
Lead and manage the Hybrid Cloud security operations , providing guidance and direction to ensure operational excellence.
Oversee security incident response and mitigation efforts, ensuring quick and efficient handling of security breaches or threats.
Develop and implement comprehensive security strategies to safeguard all hybrid Cloud systems.
Facilitate incident management processes for security-related issues, ensuring timely resolution and minimization of impact.
Conduct regular security assessments and audits to identify vulnerabilities and implement corrective measures.
Collaborate with stakeholders to develop security roadmaps and participate in daily standups to align security initiatives with organizational goals.
Lead change management processes and ITSM, ensuring security protocols are integrated and adhered to.
Foster a culture of continuous improvement in network security operations, including process creation and implementation.
Demonstrate a deep understanding of security principles, particularly in isolating issues with machine/user validation.
Experience in managing Business Continuity and Crisis management
Ensuring the security of cloud-based data and applications against unauthorized access, theft, and other threats.
Staying up-to-date on the latest cloud security technologies, trends, and best practices.
A strong understanding of cloud computing technologies, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls.
Familiarity with cloud security platforms like Microsoft Azure, Amazon Web Services, and Google Cloud Platform.
Certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Cloud Architect (CCA) are preferred.
Extensive knowledge and experience with developing Cloud Security Frameworks using industry best practices such as those from the Cloud Security Alliance (CSA) and NIST CSF and regulatory requirements such as HIPAA, HITrust and PCI or closely related.
Understanding of industry regulatory and compliance requirements (i.e., FedRAMP, PCI-DSS, NIST, HIPAA) and skilled at interpreting the compliance and security requirements into implementable and repeatable controls

Key Requirement:

Network Security- (IDS,Firewalls (Palo Alto,Cisco),Web Proxy,IPSec VPN,DDoS protection (Wildfire, Cloudflare), WAF, Firewall Rule assurance - Skybox/Algosec)
Vulnerability Management (Nessus, BigFix, Anti Virus,Anti Malware)
SIEM - (Devo , Exabeam)
Network/Security Forensics (PCAP, Packet Analysis, Wireshark, etc.)
Container security and Cloud security risk posture management (Prisma Cloud)
AWS,Azure and GCP Native Security service awareness
IAM Security ( Manage Engine, Azure AD, Key Vault Solution)

(1.) Reviews on the architecture and design deliverables and support as an SME (2.) To architect| design and develop (through Team) solution for product/project & sustenance delivery (3.) To ensure knowledge up-gradation and work with new technologies so that the solution is current and meets quality standards and the client requirements (4.) To gather specifications and deliver solutions to the client organization based on understanding of a domain or technology (5.) To recommend client value creation initiatives and implement industry best practices (6.) To train and develop team so as to ensure that there is an adequate supply of trained manpower in the said technology and deliver risks are mitigated

Job Description (Posting).
Security Architect JD: Job DescriptionLead and manage the Hybrid Cloud security operations , providing guidance and direction to ensure operational excellence. Oversee security incident response and mitigation efforts, ensuring quick and efficient handling of security breaches or threats. Develop and implement comprehensive security strategies to safeguard all hybrid Cloud systems. Facilitate incident management processes for security-related issues, ensuring timely resolution and minimization of impact. Conduct regular security assessments and audits to identify vulnerabilities and implement corrective measures. Collaborate with stakeholders to develop security roadmaps and participate in daily standups to align security initiatives with organizational goals. Lead change management processes and ITSM, ensuring security protocols are integrated and adhered to. Foster a culture of continuous improvement in network security operations, including process creation and implementation. Demonstrate a deep understanding of security principles, particularly in isolating issues with machine/user validation.Experience in managing Business Continuity and Crisis managementEnsuring the security of cloud-based data and applications against unauthorized access, theft, and other threats.Staying up-to-date on the latest cloud security technologies, trends, and best practices.A strong understanding of cloud computing technologies, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls.Familiarity with cloud security platforms like Microsoft Azure, Amazon Web Services, and Google Cloud Platform.Certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Cloud Architect (CCA) are preferred.Extensive knowledge and experience with developing Cloud Security Frameworks using industry best practices such as those from the Cloud Security Alliance (CSA) and NIST CSF and regulatory requirements such as HIPAA, HITrust and PCI or closely related.Understanding of industry regulatory and compliance requirements (i.e., FedRAMP, PCI-DSS, NIST, HIPAA) and skilled at interpreting the compliance and security requirements into implementable and repeatable controlsKey Requirement:Network Security- (IDS,Firewalls (Palo Alto,Cisco),Web Proxy,IPSec VPN,DDoS protection (Wildfire, Cloudflare), WAF, Firewall Rule assurance - Skybox/Algosec)Vulnerability Management (Nessus, BigFix, Anti Virus,Anti Malware)SIEM - (Devo , Exabeam)Network/Security Forensics (PCAP, Packet Analysis, Wireshark, etc.)Container security and Cloud security risk posture management (Prisma Cloud)AWS,Azure and GCP Native Security service awareness IAM Security ( Manage Engine, Azure AD, Key Vault Solution Reviews on the architecture and design deliverables and support as an SME (2.) To architect| design and develop (through Team) solution for product/project & sustenance delivery (3.) To ensure knowledge up-gradation and work with new technologies so that the solution is current and meets quality standards and the client requirements (4.) To gather specifications and deliver solutions to the client organization based on understanding of a domain or technology (5.) To recommend client value creation initiatives and implement industry best practices (6.) To train and develop team so as to ensure that there is an adequate supply of trained manpower in the said technology and deliver risks are mitigated

---