Security Architect - Fortigate Firewall

Job: Web Application Security Architect. Job Summary We are seeking a motivated Security Architect/Lead with ITIL experience and AWS knowledge to join our team. The Security Architect/Lead will be responsible for designing and implementing security controls for our organization, using their in-depth knowledge of SIEM tools, ITIL and AWS Design and implement security controls for our Corporate Website. - Good understanding of a n-layer Java web application, its security aspects and controls. - Develop and implement controls, monitoring dashboards and processes for Security Incident and Event Management. - Review circumstances surrounding data security incidents and designs corrective actions. - Develop, document and maintain security policies and procedures in accordance with ITIL best practices and regulatory requirements. - Strong understanding and working experience with Identifying and guiding application teams in remediating OWASP Top 10 Vulnerabilities and SANS Top 25. - Conduct periodic security assessments and risk analyses. - Monitor for security incidents and take action to address any vulnerabilities, previous experience of establishing and running a SOC. - Proactively identify and mitigate against application security risks or incidents. - Evaluate new and proposed security systems, products, and technologies. - Evaluate and implement SIEM tools like Splunk, Microsoft Sentinel, Fortinet etc. - Experience in Firewall implementation: Native and third party specially Fortinet. - Evaluate and implement AWS security tools such as AWS Config, Guard Duty, and Inspector. - Provide guidance and training to other team members on security best practices. - Need to be aware of security and technology trends and shares that knowledge with the team. - Contribute to security coding guidelines for different programming languages being used in the project. - Secure the SDLC and automate security analysis and scanning with SAST, DAST, and other Bachelor's degree in Computer Science, Information Technology, or a related field. - IT experience, experience in security architecture and design. - Relevant industry certifications such as CISSP, CISM, CSSLP, CEH and AWS Certified Security Specialty are a plus. - Experience in drafting application security coding standards, and knowledge and understanding of Application security threat management and mitigation. - In-depth knowledge of ITIL best practices. - Strong understanding of AWS technologies and security best practices. - Experience with SIEM tools like Splunk, Microsoft Sentinel, Fortinet. - Experience with security tools such as AWS Config, GuardDuty, and Inspector, Fortigate. - Experience with at least one Static Application Security Testing (SAST/DAST) tool (e.g., CheckMarx, HP Fortify SCA, Coverity, Veracode, FindBugs, other). - Experience of working with Adobe Experience web platform will be added advantage. - Excellent communication and collaboration skills. - A self-starter, ability to work independently and as part of a team. - Ability to document and effectively communicate technical findings to developer teams and evangelize security practices. - A good understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols). - Strong understanding and experience with common security libraries, security controls, and common security flaws. - Ability to coach junior team members in the team to understand and deliver based on the requirements of the program. (ref:hirist.tech)

Location: hyderabad, IN

Posted Date: 5/10/2025