Senior Security Architect

Position: Sr. Security Architect Company: Likewize Location: Chennai Job Summary: This is senior level position aimed at designing and governing the overall security architecture of our organization. Candidate should be focused, consistent, very thorough and holistic in approach. Expertise in Perimeter Security, Endpoint Security, Application Security and Cloud Security. This role will work closely with IT, Application and Business teams to ensure compliance with security best practices, regulatory requirements, and internal policies. Qualifications & Experience:

1. Must have minimum of bachelor’s degree in computer science or IT or degree in Information Security or related (Other education not considered for this position).

2. Should have total of 18 + years’ work experience in an MNC.

3. Relevant of 15 + years of experience in enterprise security architecture.

4. CISSP, CISM, CCSP or CCSK or any SANS advance certifications, SABSA, TOGAF.

5. Must have excellent written, verbal communication, documentation.

6. Must have excellent presentation skills for design and solution presentations.

7. Self-initiative, disciplined, very good time management and transparent in work. Key responsibilities include:

1. Security Architecture Design: Developing and maintaining the overall security architecture, including defining security frameworks, threat models and security reference architectures, with a strong emphasis on Zero Trust principles. Design and prepare HLD, LLD where required.

2. Threat Modelling: Develop and maintain threat models for IT systems including applications, APIs, cloud environments.

3. Risk Management: Identifying and assessing security risks, developing mitigation strategies, and ensuring alignment with business objectives.

4. Security Compliance: Ensuring compliance with relevant security regulations, industry standards (e.g. NIST, ISO 27001, PCIDSS, PII,), and internal policies.

5. Networking: In-depth knowledge of networking principles, as well as network security protocols and technologies. Should know, firewall, proxy, LB technologies.

6. Cloud Security: Expertise in cloud security principles of AWS, Azure, including implementing security controls and best practices in cloud environments.

7. Identity and Access Management (IAM): Strong understanding of enterprise IAM systems, like Okta, Entra, and Active Directory (AD), and the ability to implement/manage secure access controls for both IT & Applications.

8. Data Protection: Knowledge of data protection methods like encryption, pseudonymization, and shuffling, and how to apply them to safeguard against data corruption, compromise, and loss.

9. Security Automation & DevSecOps: Hands-on experience with security automation tools and scripting languages (e.g., Python, Lambda, Terraform) to streamline security processes and embed security into CI/CD workflows and Infrastructure-as-Code (IaC) processes.

10. Security Tools & Technologies: Hands-on experience in various security tools and technologies, including SIEM platforms, XDR, cloud-native threat detection tools, endpoint security, vulnerability scanners, and encryption tools.

11. Application Security: Experience in web application security, OWASP, API security, and secure design and testing (SAST, DAST).

12. Architecture reviews and signoffs: Review and vet RFP responses and solution designs. Support due diligence for new and existing customer requirements. Review and assess third-party/vendor solutions for security risks and compliance.

R-1178