Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Infrastructure Security Vulnerability Management Operations
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: We are looking for a highly skilled Lead Application Security & Vulnerability Management to take charge of identifying, assessing, and mitigating security risks across applications and IT infrastructure. As a key security leader, you will oversee vulnerability management operations, lead security assessments, and collaborate with cross-functional teams to ensure robust security posture and compliance with industry standards. This role demands expertise in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) to protect critical software assets. Roles & Responsibilities: Leadership & Strategy: • Lead vulnerability management operations and security assessments. • Develop and implement strategic security initiatives for application protection. • Collaborate with leadership to define security roadmaps and policies. • Act as a mentor for junior security analysts, fostering skill development. Vulnerability Management & Security Operations: • Conduct regular vulnerability scans across applications and infrastructure. • Analyze security vulnerabilities, assess impact, and prioritize mitigation strategies. • Oversee penetration testing and security assessments to identify weaknesses. • Provide detailed reports on security findings, risk levels, and remediation efforts. • Ensure compliance with industry security frameworks and standards. • Develop and maintain security policies, procedures, and playbooks. Application Security & Secure Development: • Perform SAST scans to detect vulnerabilities in source code before deployment. • Conduct DAST assessments to identify runtime security issues in web applications. • Utilize SCA tools to analyze third-party dependencies for known vulnerabilities. • Integrate security testing into CI/CD pipelines for proactive protection. • Define secure coding guidelines and conduct training for development teams. Incident Management & Vendor Coordination: • Investigate and resolve false positives and critical vulnerabilities in risk management tools. • Manage vendor relationships, escalating and resolving security issues efficiently. • Generate monthly security reports and dashboards for leadership insights. Qualifications & Skills: • Experience: 7+ years in Application Security, Vulnerability Management, and Cybersecurity. • Education: Bachelor’s/Master’s degree in Computer Science, Information Technology, or Cybersecurity. • Certifications: Preferred CISSP, CEH, CompTIA Security+. • Technical Expertise: Strong knowledge of network protocols, operating systems, security testing. • Leadership & Communication: Excellent problem-solving, analytical, and collaboration skills. • Compliance & Frameworks: Deep understanding of ISO 27001, NIST, OWASP, PCI DSS. Professional & Technical Skills: • Vulnerability Management: Brinqa, Qualys VMDR, Qualys WAS, Rapid7 InsightVM, Nessus • Application Security: Fortify, Snyk, Trufflehog, Snaffpoint • Security Frameworks: OWASP Top 10, NIST, ISO 27001, PCI DSS Additional Information: - The candidate should have minimum 5 years of experience in Infrastructure Security Vulnerability Management Operations. - This position is based at Bengaluru, Gurgram, Hyderabad, Mumbai, Noida only - A 15 years full time education is required.
Gurugram
Equal Employment Opportunity Statement
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Please read Accenture’s Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.
We have been alerted to the existence of fraudulent messages asking job seekers to set up payment to cover various costs associated with establishing employment at Accenture. No one is ever required to pay for employment at Accenture. If you are contacted by someone asking for payment, please do not respond, and contact us at india.fc.check@accenture.com immediately.