Senior Security Architect - Cloud & DevSecOps Specialist

To be responsible for designing and implementing security strategies and controls to protect containerized workloads, orchestration platforms, and their supporting infrastructure. The role involves a blend of security, DevOps, and architectural expertise to ensure the confidentiality, integrity, and availability of container-based systems while maintaining alignment with business goals and compliance requirements.

Responsibilities:

• Design secure frameworks for containerized applications, ensuring robust security at all layers (network, host, application, and orchestration).
• Define best practices for building container orchestration platforms.
• Ensure proper network segmentation and isolation within container environments.
• Develop and implement security architecture and frameworks.
• Define security requirements and controls for various systems and applications.
• Evaluate and select security products, tools, and services.
• Develop and enforce security standards for building, storing, and distributing container images.
• Integrate vulnerability scanning tools into CI/CD pipelines to identify and mitigate issues early.
• Ensure container images are signed and verified for authenticity.
• Monitor and secure running containers using runtime protection tools to detect and respond to anomalous behavior.
• Define strategies to prevent privilege escalation and container breakout attacks.
• Implement security controls to harden containers.
• Collaborate with DevOps teams to integrate security into the CI/CD process (DevSecOps).
• Automate security testing, such as static code analysis and dependency scanning, in pipelines.
• Ensure that build environments are secure and free of tampering risks.
• Develop and maintain the organization's security architecture to align with business objectives and industry best practices.
• Design secure systems, applications, and network solutions that protect against evolving threats.
• Establish security baselines and frameworks such as Zero Trust, NIST, or ISO 27001.
• Evaluate emerging technologies and trends to continuously enhance the security of container ecosystems.

Qualification, Experience and Job Specific Skills:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 6 to 8 years of experience in cybersecurity or IT roles, with at least 3 years in a security architecture position.
• Experience with security frameworks such as NIST, ISO 27001, and CIS.
• Ability to work in a fast-paced environment and manage multiple priorities.
• Excellent problem-solving, analytical, and communication skills.
• Participate in post-incident reviews and use findings to improve architectures and processes.
• Design systems for scalability while maintaining a strong security posture.
• Stay updated on the latest cloud security trends, threats, and technologies.
• Proactively recommend improvements to enhance cloud security posture.
• Participate in the development of cloud security strategies and roadmaps