Architecture Manager - Cyber Defence - IT

Cyber Defence Architecture Manager

Role: Cyber Defence Architecture Manager

Experience: 5+ years

Location: Mumbai (Others)

Cyber Defense Architecture (GSOC)

Client facing team responsible for:

- SOC Assessment and Advisory

- SIEM and SOAR Assessment

Cyber Defense Solutions Architecture which involves:

- Data Security

- XDR

- IAM / PAM

- Network Security

- Application Security

- Cloud Security

Roles & Responsibilities - Architect:

- Build and maintain end-to-end security solutions portfolio.

- Work with clients to understand their infrastructure and threat landscape at a granular level and design best-in-breed security solutions architecture for them. Should be a client champion.

- Collaborate with various vendors to understand latest tech stack offerings they have.

- Propose best-in-breed, vendor agnostic and cost-efficient solutions across Data / Endpoint / Applications / Infrastructure / Cloud and Identity security.

- Support technical teams in resolution of complex problems with implementation of security products / solutions.

- Point-of-contact for presentations and POCs to clients for different security solutions.

- Single point-of-contact for clients for solution related discussions

- Keep up-to-date knowledge on latest developments in cyber defence technologies.

REQUIREMENT:

- Minimum 10 years' experience in the role of Security Architect or Cyber Defence Solutions Architect.

- Proven experience in designing Defence-in-depth, complex, multi-layered, multi-vendors cost-effective cyber defence architectures adhering to frameworks like SABSA, TOGAF and COBIT.

- Should display proper understanding of frameworks and standards like ISO 27001, PCI: DSS, PA: DSS, NIST, HIPAA, GDPR etc.

- Hands-on experience in solutioning cyber defence for on-prem, cloud and hybrid infrastructures.

- In-depth experience in cyber defence products across Data / Endpoint / Infrastructure / Application and Identity security. For ex: DLPs, DRMs, XDRs, Deception technologies, Sinkholes, DDoS protection, UTMs, WAFs, Email security solutions, Proxy etc.

- Thorough understanding of different types of security controls (Preventive, Detective, Administrative etc.)

- Hands-on experience and in-depth understanding of SIEM and SOAR technologies.

- Thorough understanding of services, functions and workflows of Security Operations Centres.

- Minimum 4 years' experience in designing, deploying and assessing cloud security architecture (AWS / Azure / GCP)

- Thorough understanding of threats associated with APIs, containers, network security, data security, remote access, vendor access, key management, identity management, DCs etc.

- Proven ability to accurately assess and model threats for customers based on MITRE Framework.

- Advanced communication skills.

- Ability to work on multiple projects simultaneously.

- Hands-on experience in Sailpoint / Cyberark IAM & PAM solutions.

- Ability to develop APIs, playbooks and workflow automation scripts based on JS, Python, Perl etc.

- In-depth understanding of Encryption, Key Management, Certificate Management (PKI, CA, Delegation etc.)

- Understanding of IOT / OT technologies and their security.

Education/Qualifications:

- Education 60% above throughout academics

- One 3 years (at least) regular course is must either Diploma or Graduation

- Limited travel may be required within KPMG's global network of Member Firms.

- Industry leading certifications like CISSP, CCSP / CCSK, SANS GDSA etc. (Other certifications like SABSA would be desirable).

- Vendor related certifications like PCNSE, Cisco SCOR / SAAM / SASE, AWS Certified Security - Specialty, Microsoft AZ SC-900 etc.

Seniority Level: Mid-Senior level

Industry: Computer Networking Computer & Network Security

Employment Type: Full-time

Job Functions: Information TechnologyCons