Description :

An Amazing Career Opportunity for Security Architect R&D Environments.

Location : Chennai, India (Hybrid).

Profile Summary :

The Security Architect for R&D Environments will provide architectural and technical expertise to secure the software development ecosystem, including CI/CD pipelines, code repositories, and engineering collaboration platforms.

This role ensures that security principles are embedded throughout the Secure Software Development Lifecycle (SSDL) and that all engineering tools comply with enterprise security standards and regulatory requirements.

This individual is a contributing member of the Global Security Services team and is based in Chennai, India.

Are You Ready to Join the Team?

Our company is committed to finding the best and the brightest talent to help us reach the top.

If you are a dynamic, highly skilled, experienced Cloud engineer and technology enthusiast, and you enjoy working in a rapid pace within a rapidly growing business environment, then you will want to consider this position.

If you excel at communication, collaboration, and unrelenting innovation, we want to talk to you.

And if you bring dedication, positive energy and integrity to the table, you just might be the right fit for our team.

Qualifications :

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.

The requirements listed below are representative of the knowledge, skill, and/or ability required.

Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

Roles & Responsibilities (Other Duties May Be Assigned) :

Security Architecture & Governance :

- Design and maintain security architecture for software engineering tools (e.

, Jira, Bitbucket, SonarQube, Nexus, Jenkins).

- Define and enforce security policies for tool usage, integrations, and lifecycle management.

- Implement centralized access control, SSO, and RBAC across engineering platforms.

Risk Management & Compliance :

- Conduct threat modeling and risk assessments for DevOps and SDLC tools.

- Ensure compliance with frameworks such as NIST CSF, ISO 27001, and OWASP SAMM.

- Develop strategies for secure onboarding, patching, and vulnerability management.

Integration & Automation :

- Secure integrations between tools (e.g. , Jira ? Bitbucket ? Jenkins ? SonarQube).

- Implement security automation for code scanning, dependency checks, and CI/CD workflows.

Collaboration & Enablement :

- Work closely with the Product Security & Data Privacy team, software engineering, DevOps, and product teams to embed security in development processes.

- In collaboration with the Product Security & Data Privacy team provide guidance and training on secure coding practices and SSDL principles.

Incident Response & Monitoring :

- Collaborate with SOC and Incident Response teams to monitor tool-related threats.

- Define alerting and response workflows for engineering tool security incidents.

Education And/or Experience :

- Bachelors or Masters degree in Software Engineering, Cybersecurity, or related field.

- 8+ years in Information Security with at least 3+ years focused on application security or DevSecOps.

- Hands-on experience with engineering tools (Jira, Bitbucket, SonarQube, Nexus, Jenkins) and CI/CD pipelines.

- Strong knowledge of SSDL, OWASP principles, and secure coding practices.

- Expertise in identity and access management, RBAC, and SSO.

- Familiarity with cloud security and container security (AWS, Azure, Kubernetes).

- Excellent communication and stakeholder management skills.

- Preferred certifications : CISSP, CSSLP, or equivalent.

- Proven ability to independently drive security related projects.

Computer Skills :

- Proficient in MS Office applications.