Security Architect

Chennai - India

Monthly Salary: Not Disclosed

Posted on: 7 hours ago

Vacancies: 1 Vacancy

Job Summary

Job Title: Security Operations Support

Location: Remote

Client: Ford

Experience: 10

Salary: 30 - 35 LPA

Essential Job Functions:

Security Operations Support

* Application Security Testing both manually and with security assessment products

** Record security deviancies and work with developers in providing guidance and recommendations/standards to address them

* Perform Traditional Vulnerability Management and Hardening reviews for systems

* Respond to Security Events

Job Summary:

Deep technical knowledge of the OWASP Top 10 Cloud Security Posture Management (CSPM) CVSS scoring and software supply chain security.

Lead DevSecOps Advocacy and Training: Provide clear guidance to Engineering and Product teams to foster a culture of shared security responsibility

Embed Security into CI/CD Pipelines: Partner with DevOps teams to integrate shift-left controls quality gates and automated security testing (SAST/SCA/IaC) into actions

Build DevSecOps Dashboards and Reporting: Develop executive-level KPIs/KRIs covering vulnerability aging MTTR (Mean Time to Remediate) pipeline pass/fail rates and measurable risk reduction across the enterprise

Own software supply chain security (SCA): Utilize JFrog Xray for policy enforcement including vulnerable dependency detection license governance and automated blocking of malicious components within the artifact repository.

Drive Static Analysis (SAST) and Code Quality: Use SonarQube to partner with development teams reducing critical/high findings and implementing sustainable coding standards that are integrated directly into the developers IDE and pull request workflow.

Conduct Dynamic Testing (DAST): Coordinate testing using Burp Suite to validate exploitability and reproduce issues while working to automate baseline DAST scans within the CI/CD pipeline.

Lead the end-to-end vulnerability lifecycle: discovery triage risk assessment prioritization remediation tracking validation and closure across Azure cloud environments.

Operate and optimize Microsoft Defender for Cloud (Azure Defender) and Defender fo Endpoint: Improve cloud security posture reduce misconfigurations and drive remediation across compute networking storage identity and container workloads (AKS/OCR).

Infrastructure-as-Code (IaC) security : Defining and enforcing policies for Terraform ARM templates or Bicep

Required Experience:

Staff IC

Job Title: Security Operations SupportLocation: RemoteClient: FordExperience: 10Salary: 30 - 35 LPAEssential Job Functions:Security Operations Support * Application Security Testing both manually and with security assessment products ** Record security deviancies and work with developers in providin...