juara-it-solutions
Security Architect
Job description
Job Title: Security Architect
Location: Chennai
Experience: 10–15 Years
Employment Type: Full-Time
Notice Period: Immediate Joiners or Up to 15 Days
About the Role
We are seeking an experienced Security Architect to lead the design and implementation of enterprise-wide cybersecurity solutions. The ideal candidate will have deep expertise in security architecture, cloud security, identity and access management, network security, application security, and governance. You will be responsible for defining the organization's security strategy, ensuring secure technology adoption, and driving cybersecurity best practices across business and IT functions.
Key Responsibilities
- Design and implement enterprise security architecture aligned with business objectives and industry standards.
- Develop security roadmaps, architecture frameworks, and security reference models.
- Lead architecture reviews for infrastructure, cloud, applications, and digital transformation initiatives.
- Perform threat modeling, risk assessments, and security design reviews for new and existing solutions.
- Define and enforce security policies, standards, and technical controls across enterprise environments.
- Architect secure solutions for cloud platforms (Azure, AWS, GCP), hybrid environments, and on-premises infrastructure.
- Design Identity and Access Management (IAM), Privileged Access Management (PAM), and Zero Trust security models.
- Provide technical leadership for network security, endpoint protection, data security, encryption, and vulnerability management.
- Collaborate with Security Operations, Infrastructure, Cloud, DevOps, and Application teams to ensure secure implementation.
- Evaluate emerging security technologies and recommend solutions to enhance the organization's security posture.
- Support incident response activities by providing architectural guidance and remediation strategies.
- Ensure compliance with regulatory requirements, security frameworks, and industry best practices.
- Mentor security engineers and contribute to cybersecurity governance and strategic planning.
Technical Skills
Mandatory Skills
- Enterprise Security Architecture
- Cybersecurity Strategy & Governance
- Zero Trust Architecture
- Identity & Access Management (IAM)
- Privileged Access Management (CyberArk, BeyondTrust, Delinea)
- Cloud Security (Azure, AWS, GCP)
- Microsoft Defender XDR
- Microsoft Sentinel
- Microsoft Entra ID (Azure AD)
- Network Security Architecture
- Firewall Technologies (Palo Alto, Fortinet, Check Point, Cisco)
- Endpoint Security
- SIEM & SOAR Platforms
- Security Risk Assessment
- Threat Modeling
- Vulnerability Management
- Data Protection & Encryption
- Secure SDLC
- DevSecOps
- API Security
- Security Compliance & Governance
Good to Have
- Microsoft Security Copilot
- CrowdStrike Falcon
- SailPoint IdentityIQ / ISC
- Okta
- HashiCorp Vault
- Kubernetes & Container Security
- Docker Security
- CASB Solutions
- DLP Solutions
- WAF Technologies
- SASE/SSE Architecture
- Threat Intelligence Platforms
- Infrastructure as Code (Terraform, ARM, CloudFormation)
- Automation using PowerShell or Python
Required Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field.
- 10–15 years of experience in Cybersecurity, Security Engineering, or Security Architecture.
- Proven experience designing enterprise security solutions for large-scale organizations.
- Strong expertise in cloud security, IAM, network security, endpoint security, and security governance.
- Experience implementing Zero Trust principles and enterprise security frameworks.
- Strong knowledge of Microsoft, Azure, AWS, and hybrid cloud security services.
- Experience conducting security assessments, architecture reviews, and threat modeling.
- Excellent analytical, leadership, and decision-making skills.
- Strong communication and stakeholder management abilities.
Preferred Certifications
- CISSP (Certified Information Systems Security Professional)
- CCSP (Certified Cloud Security Professional)
- CISM (Certified Information Security Manager)
- SABSA Chartered Security Architect
- TOGAF Certification
- Microsoft Certified: Cybersecurity Architect Expert (SC-100)
- Microsoft Certified: Azure Security Engineer Associate (AZ-500)
- AWS Certified Security – Specialty
- GIAC Security Expert (GSE) (Preferred)
- Certified Ethical Hacker (CEH) (Preferred)
Soft Skills
- Strong leadership and strategic thinking abilities.
- Excellent communication and presentation skills.
- Ability to collaborate with cross-functional and global teams.
- Strong analytical and problem-solving mindset.
- Ability to mentor technical teams and drive security best practices.
- Self-motivated with a passion for continuous learning and innovation in cybersecurity.


