Security Solutions Architect

Key Role: Security Architect

• Location: NCR/Delhi need to work from Client premises (5 days a week)
• Shift Timing: General
• Client Interview: Yes

Responsibilities:

Responsible for maintaining information and information security. Shall also be responsible for establishing and operating the Security Operations Center

RFP - Minimum Qualifications

• BE / B. Tech / M. Tech /MCA
• 15+ Years of experience with 8+ Years relevant experience
• Should have experience as Security Architect in at least one project for Central Government/ State Government/ PSU / Banking/ Financial Sector/ Regulatory Body in India
• Certifications – Minimum one required from CISSP (preferred)/ CRISC/ CGRC/ CCSA/ CISM/ CISA/ OWSE
• Experience in implementing security in Service-oriented/ Microservices based architecture, internet/ Intranet based web/mobile applications, IDAM solutions etc
• Experience on security components/ products/ technologies (Firewall, IPS, HIPS, DLP, DAM, Mail Security, Proxy solutions, EUC security solutions, SIEM, SOAR, PIM, IAM, PKI Encryption, VAPT etc.)
• Knowledge of Agile Development processes

Detailed Job Description:

Primary Skill Set

Experience in Security Architecture and Compliance Leadership.

This encompasses the ability to design, implement, and manage end-to-end enterprise security solutions in line with regulatory frameworks such as NIST and ISO 27001, with a particular focus on government, public sector, and financial environments in India.

The candidate must possess deep expertise in architecting secure service-oriented and microservices-based systems, implementing advanced security technologies (firewalls, SIEM, DLP, endpoint security, IDAM etc.) and leading threat modelling, risk assessment, and SOC operations, all while ensuring robust compliance with Indian regulatory requirements.

Top 3 Must-Have Skills

1. Expertise in Security Architecture and Compliance: Demonstrated ability to design, deploy, and manage comprehensive enterprise security solutions, especially within government, public sector, or financial environments. Deep understanding of security frameworks such as NIST and ISO 27001, and proven experience in implementing security controls that comply with Indian regulatory requirements.
2. Hands-on Experience with Security Technologies and IDAM Solutions: Advanced proficiency in architecting and integrating security technologies—including firewalls, SIEM, DLP, endpoint protection and implementing robust Identity and Access Management (IDAM) solutions across service-oriented and microservices-based architectures for web and mobile applications.
3. Threat Modelling, Risk Assessment, and SOC Operations: Comprehensive knowledge of threat modelling and risk assessment methodologies, along with practical experience in the operation and management of Security Operations Centres (SOCs) to monitor, detect, and respond to security incidents effectively.

Responsibilities:

• Lead the architecture, implementation, and management of comprehensive security solutions for critical IT systems, ensuring alignment with organisational and regulatory requirements.
• Develop and maintain security policies, standards, and procedures in accordance with frameworks such as NIST and ISO 27001 and ensure their effective enforcement across projects.
• Conduct threat modelling, risk assessments, and vulnerability analyses to identify and mitigate potential security risks throughout the system development lifecycle.
• Architect and integrate security technologies including firewalls, SIEM, DLP, endpoint protection, and IDAM solutions, especially within service-oriented and microservices-based architectures for web and mobile applications.
• Oversee the operation and management of Security Operations Centres (SOCs), establishing processes for monitoring, detection, analysis, and response to security incidents.
• Collaborate with internal teams, stakeholders, and external vendors to ensure security designs and implementations meet business goals and regulatory compliance (such as RBI, SEBI, or other Indian regulatory bodies).
• Provide technical guidance and mentorship to team members, fostering a culture of security awareness and continuous improvement.
• Stay updated on the latest cybersecurity trends, emerging threats, and advancements in security technologies, and proactively recommend enhancements to the security posture.
• Prepare and present security architecture documentation, reports, and recommendations to management and clients.
• Collaborate closely with development teams to embed security best practices into Agile development cycles, ensuring that security is considered at every stage of the iterative software delivery process.