Job Title

Role OverviewWe are seeking a technically strong and hands-on Information Security Architect to drive security design, threat modeling, and architecture reviews across multiple projects. The ideal candidate will support teams with technical security requirements, document risks using SD Elements, and align architectural decisions with security best practices and frameworks.While this role does not directly involve conducting Vulnerability Assessment and Penetration Testing (VAPT), prior experience in these areas is essential to understand potential risks and recommend effective security controls.Key Responsibilities• Design and review secure system and application architectures.• Conduct and support threat modeling and risk assessment activities.• Identify and document attack surfaces and potential vulnerabilities during design reviews.• Act as a security advisor to project and architecture teams throughout the development lifecycle.• Capture and manage technical security observations in SD Elements, ensuring traceability and remediation tracking.• Engage with stakeholders across development, architecture, and infrastructure teams to embed security into solution design.• Align solutions with enterprise architecture frameworks (e.g., TOGAF, SABSA) and internal security policies.• Participate in architecture review boards and security governance forums.• Support secure design validation for cloud, on-prem, and hybrid environments. Required Skills and Experience• 7–9 years of experience in information security or architecture-related roles.• Strong background in application security, secure development lifecycle, and architecture design.• Hands-on experience in threat modeling and understanding of attack surfaces.• Past experience in VAPT execution and remediation handling (even though not part of the current responsibilities).• Experience using SD Elements for security requirements and issue tracking is mandatory.• Proficient in architecture frameworks such as TOGAF, SABSA, or NIST.• Good knowledge of cloud security (preferably Azure) and secure DevOps practices.• Excellent communication skills to collaborate with global stakeholders and technical teams.• Security architecture design for Azure or Snowflake • Best practices for identity and access management (IAM) • Data encryption and key management • Compliance frameworks (e.g., GDPR, HIPAA, ISO 27001) • Threat modeling or risk assessments • Automation using tools like Azure Policy, Defender for Cloud, or Snowflake's native security featuresTools and Frameworks Knowledge (Preferred)• Tools: SD Elements, ThreatModeler, Microsoft Defender, architectural modeling tools• Frameworks: TOGAF, SABSA, NIST CSF, OWASP Top 10, MITRE ATT&CKWhat You’ll Get• A chance to work with a global leader in the commercial automotive sector.• A collaborative environment driving innovative and secure vehicle technologies.• Exposure to diverse projects in an enterprise-grade security setup.