Information Security Architect

Job Role : Information Security Architect

Company: Stealth Startup (Managed Services – SMB & Enterprise)

Location: Hyderabad ( Work from Office )

Experience: 10+ years

Employment Type: Full-time

About the Role

We are a stealth-mode managed services organization delivering security, infrastructure, and cloud services to SMB and enterprise customers. We are seeking an experienced Information Security Architect to define and drive enterprise security architecture, mature security operations, and lead proactive threat detection and response strategies.

This role requires deep hands-on expertise across security engineering, SOC operations, threat hunting, SecDevOps, incident response, and cloud security , along with the ability to work closely with infrastructure, application, and DevOps teams.

Key Responsibilities

Security Architecture and Strategy

• Design and implement enterprise-wide security architectures covering infrastructure, applications, networks, and cloud environments
• Develop and maintain security architecture blueprints, standards, reference architectures, and design guidelines
• Align security architecture with business objectives, regulatory requirements, and risk management frameworks

Security Operations and Threat Management

• Lead and mature Security Operations Center (SOC) capabilities including threat hunting, incident response, and threat intelligence
• Design and enhance detection and response mechanisms using SIEM, SOAR, EDR, and MDR platforms
• Continuously improve visibility and response across endpoints, networks, cloud, and applications

Incident Response and Threat Hunting

• Lead investigations into complex security incidents and breaches
• Perform malware analysis, root cause analysis, and post-incident reviews
• Define and operationalize proactive threat hunting methodologies

Risk, Vulnerability, and Compliance Management

• Conduct security risk assessments, vulnerability management, and penetration testing across IT and OT environments
• Map and operationalize MITRE ATT&CK and Cyber Kill Chain frameworks
• Support compliance initiatives aligned with NIST, ISO 27001, and related standards

Cloud and Application Security

• Define and implement cloud security controls across AWS, Azure, and GCP environments
• Govern identity and access management, workload protection, and data security controls
• Collaborate with application and DevOps teams to embed security by design and secure SDLC practices

SecDevOps and Automation

• Lead SecDevOps initiatives including automation, tool integrations, and security content development
• Develop automation scripts and response playbooks using Python, Bash, or similar languages
• Improve operational efficiency and reduce mean time to detect and respond (MTTD/MTTR)

Technology Evaluation and Governance

• Evaluate, deploy, and manage security technologies including SIEM, SOAR, DLP, EDR, NIDS, and threat intelligence platforms
• Conduct architecture and design reviews for critical systems and applications
• Deliver security awareness sessions and provide advisory support to stakeholders

Required Experience and Skills

• 10+ years of experience in security engineering, SOC operations, and enterprise security architecture
• Strong expertise in threat hunting, incident response, and security operations
• Hands-on experience with SIEM platforms such as Splunk, QRadar, or AlienVault
• Experience with EDR/MDR platforms such as CrowdStrike or Tanium
• Strong understanding of OWASP Top 10, SANS Top 25, and network security controls
• Experience with vulnerability management and VAPT tools including Nessus, Qualys, Burp Suite, AppScan, or similar
• Practical experience with security automation and scripting using Python or Bash

Frameworks and Standards

• MITRE ATT&CK
• Cyber Kill Chain
• NIST Cybersecurity Framework
• ISO 27001

Qualifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
• Industry certifications preferred: CISSP, CISM, CCSP, CEH, OSCP, GCIH, GCIA, AWS Security Specialty
• Proven ability to design and implement enterprise security architectures and incident response frameworks

Why Join Us

• Architect and secure large-scale enterprise environments
• High-impact role within a growing managed services organization
• Exposure to complex, multi-cloud and multi-tenant security ecosystems
• Competitive compensation aligned with experience and responsibility