Information Security Architect – Infrastructure Domain | Leading Organization 5296

Role Overview & Key Responsibilities:

• Design and architecture of information security solutions for IT and cloud infrastructures (On-prem, Hybrid, Multi-Cloud).
• Evaluation, implementation, and integration of new security technologies to protect core systems and infrastructures.
• Conducting risk assessments and defining security controls across systems and projects.
• Close collaboration with infrastructure, networking, DevOps, and development teams to embed security principles into workflows.
• Defining standards, policies, and procedures for securing infrastructures, aligned with regulations (e.g., ISO 27001, PCI DSS, SOX) and international best practices.
• Participation in cyber incident investigations and root cause analysis from an infrastructure perspective.
• Supporting strategic projects from planning to go-live, with a focus on Security by Design principles.
• Staying up to date with emerging trends, technologies, and threats in infrastructure security, and recommending necessary upgrades and changes.

Requirements:

• Experience: At least 5 years in information security, including a minimum of 3 years in infrastructure security architecture and design – mandatory.
• Technical Knowledge & Skills:
• Proven experience in securing networks, operating systems (Windows, Linux), virtualization, and cloud platforms (AWS, Azure, GCP) – mandatory.
• Familiarity with security solutions such as FW, WAF, IPS/IDS, DDoS Protection, NAC, EDR/XDR – mandatory.
• Experience in conducting risk assessments, vulnerability analysis, and defining mitigation controls – mandatory.
• Strong experience in writing high-level architecture and design documents using dedicated frameworks – mandatory.
• In-depth understanding of communication protocols and their security (TCP/IP, DNS, HTTP/S, VPN, TLS) – mandatory.
• Relevant certifications/training in cybersecurity and infrastructure/networking – mandatory.
• Advantages:
• Familiarity with SIEM, SOAR, and Zero Trust solutions.
• Experience in financial or highly regulated organizations.
• Knowledge of Data Loss Prevention (DLP) solutions.