Cyber Security Architect - Bengaluru, Karnataka, India - Wipro Limited

Wipro Limited

Verified Company

Bengaluru, Karnataka, India

2 weeks ago

Posted by:

Deepika Kaur

beBee Recuiter

Description

Overview:

Trellix client looking for 2 resources with Experience with MV-EDR, SMEs with experience with the MITRE ATT&CK framework, ATT&CK evaluations, and EDR detection engineering (important for understanding how to deliver EDR detection for ATT&CK techniques).

**_

Role Purpose_**- The purpose of this role is to design the organisation?s computer and network security infrastructure and protect its systems and sensitive information from cyber threats.

_

**_
Do_**- **_
Design and develop enterprise cyber security strategy and architecture_**- _ Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses_
- _ Identify risks associated with business processes, operations,_
- information security programs and technology projects_
- _ Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge_
- _ Identify security design gaps in existing and proposed architectures and recommend changes or enhancements_
- _ Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations_
- _ Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc._
- _ Provide support during technical deployment, configuration, integration and administration of security technologies_
- _ Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc._
- _ Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity_
- _ Provide solution of RFP?s received from clients and ensure overall design assurance_

Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture
Depending on the client?s need with particular standards and technology stacks create complete RFPs
Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology
Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions
Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps
Evaluate and recommend solutions to integrate with overall technology ecosystem

- **_
Stakeholder coordination & audit assistance_**- _ Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations_
- _ Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security_
- _ Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements_
- _ Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers_

**_
Stakeholder Interaction_****_
Stakeholder Type_**
_ Stakeholder Identification_

_ Purpose of Interaction_

_ Internal_

Program Manager/Director_
Regular reporting & updates_
Infrastructure (CIS team)_
For infrastructure support_

_ External_

Customer_
To coordinate for all security breaches & resolutions_

**_
Display_**- Lists the competencies required to perform this role effectively:_
-
_ Functional Competencies/ Skill_

Leveraging Technology
Knowledge of current and upcoming security technologies (e.g. Firewalls, IPS, DDoS, SIEM, WAF, Endpoint etc.) and understanding of compliance regulatory requirement like PCI DSS, HIPAA, etc.

_Expert_:

Systems Thinking ? Understanding of the Wipro system (interrelatedness, interdependencies and boundaries) and perform problem solving in a complex environment
_Expert_:
Leveraging Technology ? In
depth knowledge of and mastery over ecosystem technology that commands expert authority respect ?
_Master_:

Technical Knowledge

Certified Information Systems Security Professional (CISSP), Cloud Architect Certification from AWS and Azure, ToGAF or SABSA certification-
_Master_
Competency Levels_
Foundation_
Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with mínimal support and guidance._
Competent_
Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well._
Expert_
Applies the competency in all situations and is serves as a guide to others as well._
Master_
Coaches others and builds organizational capability in the competency area. Serves as a key resou