Security Solution Architect

Job Title: Security Solution Architect

Job Summary

We are looking for a seasoned Security Solution Architect to design, develop, and lead the implementation of comprehensive, enterprise-grade security architectures across cloud, hybrid, on-premises, and multi-cloud environments.

As a Security Solution Architect, you will act as a trusted technical advisor, translating business and compliance requirements into secure, scalable, and resilient security solutions. You will ensure that security is embedded by design in all digital transformation, cloud adoption, application modernization, and data initiatives while balancing security, usability, performance, and cost.

Key Responsibilities

Design and architect end-to-end security solutions for cloud platforms (AWS, Azure, Google Cloud), hybrid environments, containers (Kubernetes/OpenShift), and modern applications.

Develop security reference architectures, patterns, and blueprints for identity & access management, network security, data protection, application security, cloud security, and zero-trust models.

Lead security assessments, gap analysis, risk assessments, and threat modeling for new and existing systems.

Define and implement security controls for infrastructure, platforms, applications, and data, including encryption, key management, DLP, CASB, WAF, SIEM, SOAR, and XDR solutions.

Architect robust Identity and Access Management (IAM) solutions using Okta, Azure AD/Entra ID, AWS IAM, Ping, SailPoint, CyberArk, etc., along with Privileged Access Management (PAM) and Just-In-Time (JIT) access.

Integrate security into DevSecOps pipelines, Infrastructure as Code (IaC), CI/CD, and GitOps workflows.

Ensure compliance with regulatory standards (ISO 27001, SOC2, GDPR, PCI-DSS, RBI Cybersecurity Framework, HIPAA, etc.) and industry best practices.

Provide security guidance for cloud migration, application modernization, AI/ML workloads, and data platform initiatives.

Conduct architecture reviews, security design reviews, and code reviews from a security perspective.

Collaborate with Cloud Solution Architects, Database Architects, Application teams, and infrastructure teams to embed security into solutions.

Evaluate emerging security technologies, tools, and vendors; recommend innovations and maintain the security technology roadmap.

Mentor security engineers, analysts, and other architects; conduct knowledge-sharing sessions and workshops.

Support incident response, forensic analysis, and continuous security improvement initiatives.

Required Qualifications & Experience

Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or related field.

8+ years of overall IT experience with 6+ years of dedicated experience in security architecture and solution design.

Proven track record in designing and delivering security solutions for large-scale enterprise or cloud-native environments.

Must-Have Skills & Competencies

Technical Skills:

Deep expertise in Cloud Security (AWS Security Hub, Azure Security Center, Google Security Command Center, GuardDuty, Security Lake, etc.).

Strong knowledge of Zero Trust Architecture, SASE, SSE, Micro-segmentation, and modern network security.

Hands-on experience with IAM/PAM solutions, certificate management, and secrets management (HashiCorp Vault, AWS Secrets Manager, etc.).

Proficiency in container and Kubernetes security (OpenShift, Istio, Kyverno, Trivy, Falco, etc.).

Experience with security tools: SIEM (Splunk, ELK, Microsoft Sentinel), SOAR, WAF, DLP, CSPM (Cloud Security Posture Management), CWPP (Cloud Workload Protection).

Knowledge of secure coding practices, application security testing (SAST/DAST/IAST), and API security.

Scripting and automation skills (Python, PowerShell, Terraform for security automation).

Understanding of threat intelligence, attack surfaces, and emerging threats (especially AI-related risks).

Soft Skills:

Excellent communication and presentation skills ability to explain complex security concepts to both technical and executive stakeholders.

Strong analytical, problem-solving, and risk-based decision-making abilities.

Collaboration and leadership skills in cross-functional and agile environments.

Ability to influence without authority and drive security culture.

Certifications (Highly Preferred)

CISSP (Certified Information Systems Security Professional)

CCSP (Certified Cloud Security Professional)

AWS Certified Security Specialty

Microsoft Certified: Azure Security Engineer Associate (AZ-500)

Google Cloud Professional Cloud Security Engineer

CISM or CRISC (added advantage)

TOGAF or SABSA (enterprise/security architecture frameworks)

Preferred Experience

Experience in highly regulated industries such as BFSI, Healthcare, Telecom, or Government (very relevant for Bengaluru market).

Hands-on work with multi-cloud and hybrid security architectures.

Exposure to AI/ML security, data privacy, or secure AI system design.

Prior consulting, pre-sales, or client-facing security architecture roles.

Location: Bengaluru, Karnataka (Hybrid / On-site)

Employment Type: Full-time | Permanent