Expertise:
8–15 years of professional experience in Information Security, with at least 4+ years in a Security Architect or similar role.
Key Responsibilities:
- Design, implement, and maintain enterprise security architectures aligned with industry standards (e.g., NIST, ISO 27001, CIS).
- Define and drive security architecture principles for infrastructure, applications, and cloud environments (Azure / AWS).
- Collaborate with IT, DevOps, and product teams to embed security controls within the software development lifecycle (DevSecOps).
- Conduct security assessments, threat modeling, and risk analysis for new and existing systems.
Required Skills
- Strong knowledge of cloud security (Azure, AWS, or GCP) and cloud-native security services.
- Deep understanding of network and infrastructure security, including firewalls, proxies, IDS/IPS, and VPNs.
- Expertise in Identity and Access Management (IAM), Zero Trust architecture, and Privileged Access Management (PAM).
- Experience with SIEM, SOAR, and endpoint security tools (e.g., Splunk, Sentinel, CrowdStrike).
- Familiarity with DevSecOps practices and security automation tools (e.g., Checkov, Prisma Cloud, Aqua, or Twistlock).
- Strong grasp of cryptography, PKI, and key management systems.
- Knowledge of compliance frameworks – ISO 27001, NIST, GDPR, PCI DSS, etc.
