Information Security Architect
Share
Job Location:
Monthly Salary:
Posted on:
27 days ago
Vacancies:
1 Vacancy
Job Summary
Job Summary: Information Security Architect
- Role: Senior Information Security Architect
- Location: Bangalore India
- Experience: Minimum 6 years in information/product security
Key Responsibilities:
- Lead security architecture design for both cloud-native and on-premise products.
- Conduct threat modeling using frameworks such as SD Elements STRIDE or PASTA.
- Integrate security into DevSecOps processes (CI/CD SAST/DAST container scanning IaC security secrets management).
- Define and enforce security patterns controls and reference architectures for product teams.
- Perform secure design reviews and architecture risk assessments; propose mitigation strategies.
- Review code third-party libraries and cloud configurations for adherence to secure architecture principles.
- Collaborate with cross-functional teams (Product Engineering QA DevOps) to embed security early in development.
- Provide expertise guidance and training on security best practices.
- Stay updated on emerging threats vulnerabilities and product security tools.
- Support governance risk and compliance activities; align with standards (ISO 27001 NIST OWASP).
Must-Have Qualifications:
- Minimum 6 years experience in information security architecture or related roles.
- Hands-on experience in product security vulnerability analysis secure design and architecture hardening.
- Proven expertise in securing CI/CD pipelines and related security tooling.
- Solid experience with threat modeling and security frameworks (SD Elements STRIDE PASTA).
- CISSP certification (mandatory).
- Strong cross-functional collaboration skills.
- Excellent communication; ability to convey technical risks to business stakeholders.
Nice-to-Have Skills:
- Experience in cloud security architecture (AWS Azure GCP).
- Familiarity with SD Elements risk management platform.
- Experience with secure infrastructure-as-code (Terraform CloudFormation).
- Exposure to agile DevSecOps practices and integrations.
- Additional certifications (CCSP CSA CCSK CISM etc.).
- Role: Senior Information Security Architect
- Location: Bangalore India
- Experience: Minimum 6 years in information/product security
Key Responsibilities:
- Lead security architecture design for both cloud-native and on-premise products.
- Conduct threat modeling using frameworks such as SD Elements STRIDE or PASTA.
- Integrate security into DevSecOps processes (CI/CD SAST/DAST container scanning IaC security secrets management).
- Define and enforce security patterns controls and reference architectures for product teams.
- Perform secure design reviews and architecture risk assessments; propose mitigation strategies.
- Review code third-party libraries and cloud configurations for adherence to secure architecture principles.
- Collaborate with cross-functional teams (Product Engineering QA DevOps) to embed security early in development.
- Provide expertise guidance and training on security best practices.
- Stay updated on emerging threats vulnerabilities and product security tools.
- Support governance risk and compliance activities; align with standards (ISO 27001 NIST OWASP).
Must-Have Qualifications:
- Minimum 6 years experience in information security architecture or related roles.
- Hands-on experience in product security vulnerability analysis secure design and architecture hardening.
- Proven expertise in securing CI/CD pipelines and related security tooling.
- Solid experience with threat modeling and security frameworks (SD Elements STRIDE PASTA).
- CISSP certification (mandatory).
- Strong cross-functional collaboration skills.
- Excellent communication; ability to convey technical risks to business stakeholders.
Nice-to-Have Skills:
- Experience in cloud security architecture (AWS Azure GCP).
- Familiarity with SD Elements risk management platform.
- Experience with secure infrastructure-as-code (Terraform CloudFormation).
- Exposure to agile DevSecOps practices and integrations.
- Additional certifications (CCSP CSA CCSK CISM etc.).
Key Skills
- International Development
- EMC
- JavaScript
- Import & Export
- Airlines
- Asp.Net MVC
