Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

For Employers

Add office photos

Employer? Claim Account for FREE

M2P Solutions

Compare

3.6

based on 52 Reviews

1 M2P Solutions Principal Security Architect Job

Principal Security Architect Risk Infosec

M2P Solutions Pvt Ltd

3.6

based on 52 Reviews

7-12 years

Chennai

1 vacancy

Principal Security Architect Risk Infosec

M2P Solutions

posted 2mon ago

Job Role Insights

Flexible timing

Key skills for the job

Medical Coding Medical Insurance Information Security Vulnerability Management Financial Services Cism

+ 3 more

Job Description

Develop and execute a holistic application and cloud security strategy aligned with industry best practices and regulatory requirements.

Lead a team of security professionals responsible for assessing, testing, and securing our applications and cloud environments.
Collaborate closely with software development and cloud engineering teams to embed security into the development and deployment lifecycle (DevSecOps), including secure coding practices, vulnerability assessments, and cloud security controls.
Lead security reviews and audits of our systems, networks, and applications.
Provide strategic guidance and recommendations to executive leadership on security investments, priorities, and initiatives.
Serve as a subject matter expert and advisor to executive leadership on application and cloud security matters communicating security risks and strategies effectively.
Conduct regular risk assessments and security audits of our application and cloud infrastructure, identifying vulnerabilities and recommending remediation measures.
Oversee the implementation and management of security controls and technologies to protect against internal and external threats targeting our applications and cloud services.
Provide guidance and support to project teams in implementing secure cloud architectures and ensuring compliance with security policies and standards.
Stay abreast of emerging threats and security trends in application and cloud security, proactively adapting security measures to mitigate risks.
Implement and manage security controls, technologies, and best practices to protect against internal and external threats targeting applications and cloud services.
Ensure compliance with security policies, standards, and regulatory requirements related to application and cloud security.

Who You'll Need to Be

Bachelors / masters degree in computer science, Information Security, or a related field; advanced degree preferred.
Proven experience (7+ years out of 12+ years) in a senior leadership role within application and cloud security, with a strong background in implementing effective security strategies across diverse environments.
Deep understanding of cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices.
Strong knowledge of software development methodologies and secure coding principles, with experience in DevSecOps practices and tools as follows [ Gitleaks, SonarQube, Dependnecy Track, Terrascan, OWASP ZAP, Mobsf, Defect Dojo and RHACS ]
Experience of Threat Modelling against any 1 or multiple of the following standards: Stride, Dread, Pasta and Attack Trees for Cloud, API, Mobile Application are preferred.
Expertise and deep understanding on CNAPP [ CPSM, CWPP, CIEM].
Expertise in Vulnerability life cycle related with PCI DSS, PCI 3DS and SOC2 etc
Deep understanding and hands on Fortify, Tenable and Burp Suite preferred.
Expertise in industry standards and frameworks related to application and cloud security (e.g., OWASP, CIS Benchmarks, CSA Cloud Controls Matrix).
Experience leading and managing a team of security professionals, fostering a culture of collaboration and continuous improvement.
Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels of the organization.
Relevant certifications (e.g., CISSP, CCSP, CISM) preferred.
Proven track record of driving security initiatives and achieving measurable outcomes in a complex and dynamic environment