Security Architect

Egon Zehnder​Egon Zehnder (www.egonzehnder.com) is trusted partner to many of the world's most respected organizations and is a leading leadership advisory firm, with more than 560+ consultants and 63 offices in 36 countries spanning Europe, the Americas, Asia Pacific, the Middle East and Africa. Our clients range from the largest corporations to emerging growth companies, government and regulatory bodies, and major educational and cultural institutions. We bring together vast industry expertise and diverse insight to form the world's preeminent leadership advisory firm.​The firm is a private partnership which allows us to operate independent of any outside interests. As a result of this unique culture, Egon Zehnder has the highest professional staff retention rate for a global firm in our profession. We work with both disruptors and the disrupted client base across all industries.​Knowledge Centre India (KCI)​Knowledge Center India (KCI), is the central engine that drives the operational value for the firm. Established in 2004, KCI has evolved over the years from purely operational efficiencies into more value-added service offerings, becoming a true business partner. There are various teams based at KCI that work with Global Offices, Practice Groups and the Management across all aspects of the firm's business life cycle. With a headcount of more than 500, the center has 5 core teams working including Experts, Research Operations, Visual Solutions, Projects/CV Capture and Digital IT, working round the clock on many mission critical elements.​ Your Journey at Egon Zehnder Starts HereAt EZ, you have the opportunity to deliver digital transformation initiatives across the globe for the organization. Our focus on emerging technology solutions along with our commitment to internal career growth and exceptional client value.Who we are!We are part of Digital-IT team established 15 years ago in Gurgaon, India to provide technology support and rollout digital initiatives to 60 plus global offices. Digital IT has six key pillars - Collaboration Technology; Functional Technology; Digital Technology; Security & Architecture; Infrastructure & Services, Digital Success to support business and to take lead on digital transformation initiatives with the total strength of 150+ team members across the globe.PositionAs a security architect, you will be responsible for planning, designing, and testing security solutions for our IT infrastructure, using the latest security architectures, protocols, standards, and tools. You will work closely with the Digital IT teams to understand their security needs and requirements and provide security architectures and frameworks that meet them. You will collaborate with different teams in every aspect of the security life cycle, from assessment and design to implementation and maintenance to monitoring and response. You will also lead and manage the Vulnerability Management and Endpoint Security teams, responsible for identifying, assessing, reporting, and remediating cyber vulnerabilities and threats across endpoints, workloads, and systems. You will ensure they use the best practices and methodologies to perform their tasks effectively and efficiently.Key responsibilities and accountabilitiesWhat will you do?Design and implement security architectures and frameworks for our cloud, hybrid, and on-premise environments following the zero-trust architecture principles of least privileges, micro-segmentation, and verification.Provide security guidance and support to the development, operations, and engineering teams and ensure that security is integrated into the software development life cycle (SDLC) using agile methodologies and DevSecOps principles. Perform security assessments and audits of our systems and networks, identify vulnerabilities and risks, and provide mitigation recommendations and solutions to reduce the attack surface and enhance the security posture.Research and evaluate new security technologies, trends, and best practices, such as AI, ML, IoT, etc., and provide valuable recommendations and insights to improve our security posture and capabilities, focusing on zero-trust architecture solutions and technologies.Ensure the security hygiene of our Windows platforms, servers, workstations, and networks using Group Policy, Active Directory, BitLocker, Firewall, etc.Audit and advise on security solutions for our servers, workstations, and networks, such as AVs, DLP, application control, encryption, backup, patching, hardening, etc.Lead and mentor the vulnerability management and endpoint security teams and oversee their performance and development.Collaborate and coordinate with other teams, such as SOC, Wintel, Networks, Endpoint, etc., to ensure the security of the entire IT environment and facilitate the resolution of security issues.Generate and present dashboards and reports on the security status, metrics, trends, and issues to the higher management and stakeholders, using tools such as Power BI, Excel, etc.What will you need to succeed?Bachelor's degree in computer science, Information Technology, Cybersecurity, related field, or equivalent work experience.At least 8+ years of experience in the cyber security field, with proven experience in security architecture, design, implementation, and management.In-depth knowledge and experience with various security tools, technologies, frameworks, and standards, such as Sentinel, Tenable, CSPM, CNAPP, threat hunting, vulnerability management, endpoint security, etc.Strong knowledge and experience with cloud security, especially with Microsoft Azure and AWS.Experience with DevSecOps, CI/CD, and agile methodologies.Knowledge of topics, such as security standards, frameworks, best practices, vulnerabilities, risks, threats, etc.Research and evaluate new security technologies, trends, and best practices and provide valuable recommendations and insights to improve the security posture and capabilities.Experience with tools such as vulnerability scanners, penetration testing, risk analysis, etc., to test networks and identify security vulnerabilities, misconfigurations, system weaknesses, outdated software, etc.Expertise and understanding of types of cyberattacks and how to respond to them, such as phishing, ransomware, denial-of-service, etc.Strong analytical, problem-solving, and decision-making skills, with the ability to work independently and collaboratively in a fast-paced and dynamic environment.Excellent communication, presentation, and interpersonal skills, with the ability to communicate effectively with technical and non-technical audiences.Strong collaboration and coordination skills, with the ability to work effectively with cross-functional teams and stakeholders.Certifications such as CISSP, CISM, CCSP, AZ-500, AWS Certified Security, etc. are preferred but not required. PRB