Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Identity and Access Management (IAM) Operations
Good to have skills : NA
Minimum 12 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: • Manage and resolve incidents and services requests for SailPoint • Perform daily monitoring and troubleshooting of system alerts generated by SailPoint • Perform troubleshooting of issues with system integrations including Directory servers, applications integrated for account provisioning/de-provisioning, user identity lifecycle data and birthright access provisioning • Perform troubleshooting of issues for endpoints and applications integrated with SailPoint IIQ • Manage and modify JML workflows and approvals configurations • Manage least privilege access policies, RBAC policies, entitlements, and roles • Configure and run certification campaigns and resolution of incidents pertaining to access certification • Automate repetitive tasks to reduce the amount of manual work through SailPoint, Powershell, or other scripting capabilities and document the schedule and components to ensure operational success during outages • Manage the SailPoint approval queue for IDAM according to ’s policies and standards • Coordinate with SailPoint as needed for resolution of product related issues • Health monitoring, minor and major upgrades, backups, and archival verifications • Incident, Problem, and change management as per agreed SLAs • Installation of SSL certificates to the SailPointenvironment • Problem management and Root cause analysis • Update user, operations documentation, and knowledge management database including lessons learned for continuous service improvement • Perform compliance and governance monitoring and reporting • Provide release management support for changes and testing support for new enhancements and changes • Quarterly demand forecasting for prioritization of applications for onboarding • Requirements gathering, design for applications identified for onboarding • Onboarding of applications leveraging application onboarding tool • Develop workflows and access provisioning policies • Leverage existing test cases and develop new test cases for automated testing of application integrations Privilege Access Management • Troubleshoot and resolve incidents and services requests pertaining to privileged access managed and endpoint privilege management • Process new folder/Security group requests • Monitoring and Health Check of BeyondTrust • Create, modify, and delete BeyondTrust folders and security groups, manage BeyondTrust account management policies • Monitor and manage BeyondTrust components – Privilege Remote Access andBeyondTrust BeyondInsight • Create Password Vaults • Support password rotations and fix password change failures • Manage jobs and workflows for creation of secrets in Password Safe • Onboarding and offboarding of privileged accounts and Systems Endpoint Privileges Management • Configure and support providing of elevated Rights • Support for Whitelisting and creation of policies • Monitoring of elevated access • Monitoring of EPM inboxes – checking if applications are compliant, verification with employees • Creation of policies for application whitelisting and blacklisting • EPM agent troubleshooting General • Compliance and Service level reporting • Provide audit support and facilitate reviews of IT administrator privileges • Provide weekly reporting on issues, risk, and monthly reports on SLA’s • Health monitoring, patching, and minor upgrades • Coordinate with BeyondTrust as needed for resolution of product related issues • Problem management and root cause analysis • Update user, operations documentation, and knowledge management database including lessons learned for continuous service improvement • Provide release management support for changes and testing support for new enhancements and changes Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity and Access Management (IAM) Operations. - Strong understanding of cloud security principles. - Experience in implementing security controls in cloud environments. - Knowledge of security compliance standards. - Hands-on experience with security tools and technologies. Additional Information: - The candidate should have a minimum of 12 years of experience in Identity and Access Management (IAM) Operations. - This position is based at our Bengaluru office. - A 15 years full-time education is required.