Kshema - Principal Cybersecurity Architect

Principal Cybersecurity Architect

- We are seeking a highly technical self-directed Principal Cybersecurity Architect with deep expertise in SaaS, IaaS and PaaS on either of GCP, AWS and Azure platforms. This person should have a deep passion for driving security at multiple levels of the technology stack, and crafting novel solutions to difficult or pervasive security issues that affect users directly. The ideal security architect should also be comfortable with a vast array of disparate technologies and fully understand techniques used to secure a sophisticated engineering environment.

- The candidate will be responsible for Secure Architectural design at Kshema and be the one who brings security to the forefront in all technology projects. You will have a deep understanding of various Cyber Security areas like Network Security, Cloud Security, Endpoint Security, and more, so you can make informed decisions about the best security solutions for the organization.

- You'll be working with stakeholders across the different platforms to make sure that their solutions are secure by design and meet Kshema' s security policies. To do this, you'll need to be able to articulate your ideas and sell the benefits of your knowledge and experience. And you'll be documenting your decision-making process to ensure that everyone understands the thought behind the security design.

- Communication and Collaboration is key. You will work closely with a range of internal and external stakeholders (both technical and non-technical). You'll also need to be comfortable working at all levels of an organization.

Your responsibilities:

- Develop and maintain the Security architecture, blueprints, and patterns for relevant platforms.

- Evaluating and recommending security solutions to ensure the protection of sensitive data and systems.

- Collaborating with cross-functional teams to design and implement security measures that meet business needs.

- Staying current with emerging threats, technologies, and industry standards (Zero Trust, NIST, CIS etc).

- Creating and enforcing security policies and procedures.

- Conducting risk assessments to identify potential vulnerabilities and develop mitigation strategies.

- Communicating security risks and mitigation plans to stakeholders, including senior leadership.

- Supporting incident response efforts and conducting investigations as needed.

- Continuously improving the security posture of the organization through regular assessments and implementation of best practices.

- Leadership qualities including the ability to work effectively with cross-functional teams and be able to consider diverse opinions.

- Excellent verbal and written communication skills.

The experience we're looking for includes:

- Hands-on Security architecture experience with Azure, AWS or GCP

- Ability to lead, collaborate, be the authority on Cyber Security Solutions

- In-depth knowledge of Cyber security and understanding of other cyber security domains such as Risk Management, IAM, Vulnerability Management, etc.

- Knowledge of regulatory and compliance frameworks and the requirements underlying each, including ISO, SOX, PCI, FedRAMP and HIPAA

- In-depth understanding of architecture and engineering techniques

- Strong understanding of technology and applications across a range of different technology stacks

- Solid understand of the relationships between business strategy, digital transformation strategy and cyber security posture.