Cyber Security Architect Job in Mphasis

Job DescriptionRole: Cyber Security ArchitectLocation: BangaloreWho are we looking for?Our client requires a contract Information Security Architect.Information Security Architect are responsible for ensuring that the design of IT and business solutions meets companys, legal and regulatory security and compliance standards. They will be required to engage with internal and external stakeholders at all levels of seniority to securely achieve the goals of the companys security organization and business. The role reports into the Chief Information Security Officer.Position Summary Hands-on role to provide technical expertise on the design, architecture, justification and implementation of Information Security within projects at appropriate level to maintain the confidentiality, integrity, availability, accountability and relevant compliance. Working with other technical stakeholders, your responsibilities will includeDesigning / architecting security solutions to thwart malicious attacks that could lead to the compromised of Groups information or systems;Work with the CISO, Operational IT and Solution Architect(s) to ensure that architecture solutions meet the business requirements and fit with the overall IT Security Architecture & strategy;Analyze existing systems and preform a gap analysis against Group security requirements and best practice;Performing treat modelling against applications, systems, infrastructure and process;Testing for weaknesses and defining audit scope in order that an outside ethical hacker can be engaged to run a thorough penetration test in order to ensure that systems are secure from attacks:Liaise with technical stakeholders to discuss and explain the technical implications of any issues identified;Gaining a thorough understanding of an organizations architecture (application, infrastructure and business process) in order to learn who has access and where the vulnerable points may be. After making a thorough assessment, recommend updates and improves the overall Companys security stance through software, hardware, policy and process;Identifying and architecting countermeasures that will protect systems when an unauthorized user attempts to gain access;Validating that solution designs meet the security principles, requirements and concepts;Always being concerned with protecting information flow;Participate in reviews of solution architectures ensuring that all solutions being implemented by client group meet the principles of Security and Privacy by Design and Default;Ensure that appropriate Information Security standards (corporate, industry, national and international) are adhered to;Track and promote use of common methods and processes for achieving security solution design;Contribute to the continual improvement of security standards, policies, principles and guidelines;Track and understand current and emerging threats and vulnerabilities;Provide governance and alignment of architecture development to the Information Security strategies;Conduct feasibility studies for new technologies, if applicable;Supporting Information Security operational activities as request by the CISO.Knowledge, Skills and Experience:Extensive technical information security experience, including, but not limited to:Penetration TestingSecurity AnalysisPhysical Security TestingVendor management of IT and Security 3rd partiesSecurity Patch ManagementVulnerability ManagementPhysical and Cyber security policiesFirewalls and Identify Management Extensive knowledge and understanding of security at all levels of the OSI modelAble to work effectively in a team and across multi-functional teamsStrong understanding of current trends and developments in information securityExpert knowledge of security principles and technologiesIn depth knowledge of OWASP, Secure Application Development and Software Development methodologiesMobile device security and application developmentExcellent written and oral communication skills at all levels, strong communicator and ability to articulate and communicate complex IT-related business issues to senior staffTechnical Architectural level experience, including infrastructure, networking and applicationExperience of Architecting innovative Information Security technology systems in a consumer-facing sector. CISSP, CLAS, SANS GIAC or TOGAF certification an assetExtensive knowledge of ISO27001/2, GDPR, DPA and relevant standards / legislationGood understanding of Risk Management and risk methodologiesBachelors degree in Computer Science, MIS, Engineering or related field preferred, or demonstrable equivalent commercial experience, including any relevant security qualificationsMotor and retail industry experience an assetExperience of security management tools such was McAfee MVM, Qualys, Nessus, Rapid7, ZAP, Burp Suite, etc. is an advantage.Whats in for you?At Mphasis, we promise you the perfect opportunity of building technical excellence, understand business performance and nuances, be abreast with the latest happenings in technology world and enjoy a satisfying work life balance. With the current opportunity, you will get to work with the team that has consistently been setting benchmarks for other deliveries in terms of delivery high CSATs, project completion on time and being one of the best teams to work for in the organization. You get an open and transparent culture along with freedom to experimentation and innovationWho are we?Mphasis is a leading IT solutions provider, offering Applications, Business Process Outsourcing (BPO) and Infrastructure services globally through a combination of technology knowhow, domain and process expertise. Over the years we have left an indelible impression in the IT solutions domain with an impressive clientele and an extensive global presence. The accolades we have been garnering can be attributed to our undeterred focus in delivering quality solutions across verticals that meet the challenging requirements of our esteemed customers. Our integrated solutions offering is aimed at creating value for our customers, helping them in improving their business processes with minimum hassles and capital outlays.

PRIMARY COMPETENCY : Information Security PRIMARY SKILL : Security Design & Integration PRIMARY SKILL PERCENTAGE : 100