Job Description

Key Responsibilities

Design, implement, and maintain secure architectures across on-premises and cloud environments (AWS, Azure, GCP). Conduct advanced

penetration testing

,

red teaming

, and

vulnerability assessments

on applications, networks, and systems. Review and harden system configurations, identity & access management, and network segmentation models. Develop threat models and define security architecture blueprints aligned with enterprise risk frameworks. Provide expert guidance on remediation of vulnerabilities and coordinate with system owners and developers. Integrate security into the

SDLC

and DevSecOps pipelines; recommend secure coding and deployment practices. Support

incident response

teams in identifying root causes and developing post-incident improvements. Evaluate and select appropriate security tools, frameworks, and technologies to strengthen enterprise defense. Conduct technical security reviews for third-party solutions and new technologies. Mentor security engineers and penetration testers; establish security testing methodologies and standards.

Required Skills & Qualifications

Bachelor's degree in Computer Science, Information Security, or related discipline. Minimum

8+ years of experience

in cybersecurity, including

3+ years in security architecture

and

penetration testing

. Proven hands-on expertise in:

Penetration testing tools:

Burp Suite, Metasploit, Nmap, Nessus, Kali Linux, etc.

Security frameworks:

NIST, ISO 27001, CIS, MITRE ATT&CK.

Scripting languages:

Python, PowerShell, or Bash.

Cloud security controls

for AWS / Azure / GCP.
Deep understanding of

network security, application security, encryption, IAM, and threat modeling

. Strong communication and documentation skills for presenting technical findings to stakeholders.

Certification:

Mandatory:

OSCP (Offensive Security Certified Professional)

Preferred:

CISSP, CISM, CEH, or AWS Security Specialty

Preferred Experience

Prior experience in

security architecture consulting

,

red teaming

, or

offensive security assessments

. Exposure to

container security

(Docker, Kubernetes) and

cloud-native application protection

. Knowledge of

SIEM/SOAR

integration and automation workflows. Experience in designing

Zero Trust

and

Defense-in-Depth

architectures.

Soft Skills

Analytical mindset with the ability to think like an attacker and architect like a defender. Excellent stakeholder management and presentation skills. Strong problem-solving and critical-thinking abilities. * Ability to work independently and collaboratively across diverse teams.