Architecture, Solution Design & Security Expert

Job Profile The Architecture, Solution Design & Security Expert is responsible for reviewing, designing and implementing scalable, secure, and efficient IT solutions that meet the business’s needs. This role requires deep expertise in system architecture, solution design, cloud infrastructure, and cybersecurity. The expert will work closely with business leaders, IT teams, and external vendors to create systems that align with strategic goals while maintaining the highest levels of security and compliance. The role also includes performing security assessments, ensuring security standards are embedded within every design and providing guidance on best practices across the organization’s technology stack. The role is expected to cover all aspect of solutions including but not limited to infrastructure, application so that it is complied to the organizational standards and also addresses the business problems. Key Responsibilities: 1. Solution Architecture & Design:

• Lead the development of architecture solutions, ensuring alignment with business objectives and technology strategies.
• Define and document system designs, technical standards, and integration patterns.
• Create architecture blueprints, including diagrams, technical specifications, and documentation for infrastructure, data flows, and services.
• Evaluate and recommend technology stacks, frameworks, and tools for optimized performance and scalability.
• Ensure system designs integrate smoothly with cloud platforms (AWS, Azure, GCP) and on-premises infrastructure.

2. Security Architecture & Cybersecurity:

• Design secure architectures by embedding security best practices into the system and application design.
• Conduct threat modeling and risk assessments for new and existing systems. Also prepare the security concept as per the organization standards.
• Develop and enforce security policies, procedures, and frameworks in line with industry standards (e.g., ISO 27001, NIST, GDPR) as applicable to the solution and required by the security concept finalized with suppliers of solutions.
• Collaborate with security teams to ensure identity and access management, data protection, and encryption solutions are effectively implemented.
• Perform security audits and vulnerability assessments to ensure systems are hardened against cyber threats.

3. Solution Design & Implementation:

• Define the end-to-end solution design for complex business challenges, working across application development, data architecture, and infrastructure within the security framework.
• Collaborate with business teams, suppliers of solutions, developers if internally developed to ensure all solutions meet functional and technical requirements.
• Provide technical leadership during the development lifecycle, including troubleshooting, performance optimization, and security reviews as applicable.
• Ensure the solution is aligned with different stake holders across the organization

4. Governance & Compliance:

• Ensure compliance with legal and regulatory requirements for IT systems, including privacy regulations, data sovereignty, and security standards.
• Develop governance models for the deployment and management of solutions, ensuring consistency with enterprise architecture.
• Document, review, and update architecture and security guidelines regularly to maintain compliance with evolving standards.

5. Collaboration & Stakeholder Engagement:

• Work closely with business stakeholders to understand their strategic goals and translate them into technical requirements.
• Provide expert guidance and recommendations to senior leadership on technology decisions, security measures, and architectural direction.
• Liaise with external vendors and partners to ensure third-party solutions align with organizational security and architectural standards.

6. Continuous Improvement & Innovation:

• Stay up-to-date with emerging technologies, security threats, and trends in cloud architecture and solution design.
• Identify opportunities for improving system performance, security, and scalability through innovative approaches and solutions.
• Mentor and provide guidance to junior architects, developers, and security team members.

Required Qualifications: Education:

• Bachelor's degree in Computer Science, Information Systems, Engineering, or a related field.
• A master’s degree in a related discipline is preferred.

Experience:

• 7-10 years of experience in IT architecture, solution design, and security, preferably in large-scale environments.
• Proven experience designing and implementing secure, scalable systems in cloud and hybrid environments (AWS, Azure, GCP).
• Basic experience in handling SAP solutions for core modules like MM/SD/PP and iterfaces.
• Experience with infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation) and DevOps practices.
• Certifications:
• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) is preferred
• AWS Certified Solutions Architect, Microsoft Azure Architect, or other relevant certifications.
• TOGAF or similar Enterprise Architecture certifications are a plus.

Technical Skills:

• Deep understanding of cloud infrastructure, microservices architecture, and distributed systems.
• Expertise in security frameworks (e.g., NIST, ISO 27001), encryption technologies, and security tooling.
• Proficiency in programming/scripting languages (e.g., Python, Java, PowerShell) for automation.
• Familiarity with containerization (Docker, Kubernetes), identity management (IAM, SSO), and authentication technologies (OAuth, SAML).

Key Competencies:

• Strategic Thinking: Ability to think long-term, aligning technology solutions with business objectives.
• Problem Solving: Proactive approach to resolving technical issues and architectural challenges.
• Communication: Excellent verbal and written communication skills to convey complex technical concepts to diverse stakeholders.
• Collaboration: Strong interpersonal skills to work with cross-functional teams, including business units, developers, and security experts.
• Security Mindset: Strong focus on embedding security practices across all layers of architecture and development.
• Adaptability: Ability to quickly learn and adapt to new technologies, frameworks, and security requirements.

Working Conditions:

• Hybrid work environment based out of Bengaluru with the flexibility for remote work.
• Occasional travel to company sites, vendors, or data centers may be required.
• May involve after-hours work to meet project deadlines or respond to security incidents.

Do you know your way around these? Then our team would love to hear from you! About ZEISS Group: ZEISS is an internationally leading technology enterprise operating in the fields of optics and optoelectronics. In the previous fiscal year, the ZEISS Group generated annual revenue totaling 10 billion euros in its four segments Semiconductor Manufacturing Technology, Industrial Quality & Research, Medical Technology and Consumer Markets (status: 30 September 2023). For its customers, ZEISS develops, produces and distributes highly innovative solutions for industrial metrology and quality assurance, microscopy solutions for the life sciences and materials research, and medical technology solutions for diagnostics and treatment in ophthalmology and microsurgery. The name ZEISS is also synonymous with the world's leading lithography optics, which are used by the chip industry to manufacture semiconductor components. There is global demand for trendsetting ZEISS brand products such as eyeglass lenses, camera lenses and binoculars. With a portfolio aligned with future growth areas like digitalization, healthcare and Smart Production and a strong brand, ZEISS is shaping the future of technology and constantly advancing the world of optics and related fields with its solutions. The company's significant, sustainable investments in research and development lay the foundation for the success and continued expansion of ZEISS' technology and market leadership. ZEISS invests 15 percent of its revenue in research and development – this high level of expenditure has a long tradition at ZEISS and is also an investment in the future. With around 43,000 employees, ZEISS is active globally in almost 50 countries with around 30 production sites, 60 sales and service companies and 27 research and development facilities (status: 30 September 2023). Founded in 1846 in Jena, the company is headquartered in Oberkochen, Germany. The Carl Zeiss Foundation, one of the largest foundations in Germany committed to the promotion of science, is the sole owner of the holding company, Carl Zeiss AG. ZEISS in India ZEISS in India is headquartered in Bengaluru and present in the fields of Industrial Quality Solutions, Research Microscopy Solutions, Medical Technology, Vision Care and Sports & Cine Optics. ZEISS India has 3 production facilities, R&D center, Global IT services and about 40 Sales & Service offices in almost all Tier I and Tier II cities in India. With 2200+ employees and continued investments over 25 years in India, ZEISS’ success story in India is continuing at a rapid pace. Further information at ZEISS India ()