Cyber Security Architect - DevSecOps (7-10 yrs)

We are Hiring for the position of DevSecCybersecurity Architect

Job Title : DevSec Cybersecurity Architect

Location : Bangalore

Experience : 8 + years At least 5 years into architectural role

Notice Period : Immediate to 15 days

Mandatory skills : Looking for some strong Cyber Security Architect with CISSP or CISM , Application Security experience is required, DevOps, AI / ML, IoT, 2G / 3G / 4G /5G experience is required.

Required Qualifications :

- 8+ years of experience in cybersecurity, with at least 5 years in a senior or architectural role

- Extensive experience in network security, particularly in telecom and enterprise environments

- Proficiency in DevSecOps tools and practices

- Experience with containerization and orchestration technologies (Docker, Kubernetes)

- Familiarity with regulatory compliance requirements (NCA, ISO 27001, NIST, GDPR, etc.)

Preferred Qualifications :

- Relevant certifications such as CISSP, CSSLP, CCSP, or CISM

- Experience with 3G, 4G and 5G network security

- Knowledge of AI/ML applications in cybersecurity

- Experience with IoT security

- Proficiency in scripting languages (Python, Bash, PowerShell )

Key Responsibilities :

1. Application Security :

- Develop Applications security maturity model by defining the current As-is status and To-be and the roadmap to reach the targeted maturity level.

- Define all metrics and KPIs to define the application security maturity index in Salam

- Design and implement secure software development lifecycles (SSDLC)

- Conduct security architecture reviews and threat modeling for applications

- Integrate security testing tools into CI/CD pipelines

- Develop and maintain security standards and guidelines for developers

- Perform code reviews to identify and mitigate security vulnerabilities

- Design and implement secure applications architectures for telecom and enterprise environments

- Develop and maintain Applications security policies, standards, and procedures

- Conduct network vulnerability assessments and penetration testing

- Stay updated on emerging threats and vulnerabilities in applications security and related topics

3. DevSecOps :

- Implement DevSecOps practices and tools to automate security processes

- Collaborate with development and operations teams to integrate security into agile methodologies

- Develop and maintain security metrics and KPIs for continuous improvement

4. Cybersecurity Projects and POCs :

- Lead and manage cybersecurity projects and proof of concepts

- Evaluate and recommend new security technologies and solutions

- Conduct research on emerging cybersecurity trends and technologies

- Prepare and present technical reports and recommendations to stakeholders