Job Opening || Infrastructure Security Lead || Hyderabad

Greetings from Technogen !!!

We thank you for taking time about your competencies and skills, while allowing us an opportunity to explain about us and our Technogen, we understand that your experience and expertise are relevant the current open with our clients.

About Technogen : https://technogenindia.com/

Technogen India Pvt. Ltd. is a boutique Talent & IT Solutions company, founded in 2008, has been serving global customers for over last 2 decades,. Talent Solutions: We assist several GCCs, Global MNCs and IT majors on their critical and unique IT talent needs through our services around Recruitment Process Outsourcing (RPO), contract staffing, permanent hiring, Hire-Train-Deploy (HTD), Build-Operate-Transfer (BOT) and Offshore staffing.

Job Title : Infrastructure Security Engineering and Architecture Lead

Required Experience : 10+ years

Work Mode: WFO-4 Days from Office.

Shift Time : UK Shift Time-12:00 PM IST to 09:00 PM IST.

Location : Hyderabad.

Job Summary:-

• The Infrastructure Security Engineering and Architecture Lead is a senior technical role responsible for the secure design, implementation, and ongoing hardening of the organization's critical IT infrastructure across on-premises, cloud (IaaS, PaaS, SaaS), and hybrid environments.
• This individual will serve as a subject matter expert, leading security initiatives, defining architectural standards, and mentoring engineering teams to integrate robust security controls throughout the infrastructure lifecycle.
• The ideal candidate possesses deep technical expertise in various infrastructure domains, a strong understanding of modern security principles, and the ability to translate complex security requirements into actionable engineering solutions.

Key Responsibilities:

• Security Architecture & Design:
• Lead the development, review, and evolution of secure architectural patterns and standards for all infrastructure components (networks, servers, storage, virtualization, containers, cloud platforms, endpoint management).
• Design and implement security controls for new infrastructure initiatives, ensuring adherence to security best practices, industry frameworks (e.g., NIST, ISO 27001), and regulatory requirements.
• Provide expert security guidance during the selection, design, and deployment of infrastructure technologies.
• Perform security architecture reviews of existing and proposed infrastructure to identify and mitigate design-level vulnerabilities.
• Security Engineering & Implementation:
• Drive the engineering and implementation of advanced security solutions and tools across the infrastructure landscape (e.g., WAFs, IDS/IPS, network segmentation, secure remote access, endpoint detection & response, cloud security posture management).
• Oversee the secure configuration and hardening of operating systems (Windows, Linux), network devices, hypervisors, and cloud services.
• Automate security provisioning, configuration management, and vulnerability remediation processes using scripting (e.g., Python, PowerShell) and Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation, Ansible).
• Collaborate with DevOps/SRE teams to embed security into CI/CD pipelines and infrastructure deployments.
• Vulnerability Management & Hardening:
• Lead efforts to identify, assess, prioritize, and remediate infrastructure vulnerabilities.
• Develop and implement continuous monitoring and alerting mechanisms for infrastructure security posture.
• Define and enforce secure baseline configurations and golden images for server, network, and cloud environments.
• Cloud Security:
• Serve as a primary architect for securing cloud infrastructure (e.g., AWS, Azure, GCP), including identity and access management (IAM), network security groups, cloud native WAFs, container security, and serverless function security.
• Develop and implement cloud security policies and best practices.
• Mentorship & Leadership:
• Provide technical leadership and mentorship to junior security engineers and infrastructure teams.
• Evangelize security best practices and foster a security-first culture across the organization.
• Act as a point of contact for complex infrastructure security issues and incident response support.
• Documentation & Standards:
• Create and maintain comprehensive security documentation, including architecture diagrams, security standards, hardening guides, and operational procedures.
• Develop and enforce security policies and guidelines for infrastructure.
• Collaboration:
• Work closely with IT operations, development teams, enterprise architecture, and other security domains (e.g., AppSec, GRC) to ensure a holistic security approach.
• Engage with external vendors and security researchers as needed.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, Engineering, or a related field; equivalent practical experience will be considered.
• 10+ years of progressive experience in IT infrastructure, with at least 5 years specifically focused on infrastructure security engineering and architecture.
• Demonstrated expertise in securing diverse infrastructure components, including:
• Networking: Firewalls (NGFW, WAF), IDS/IPS, VPNs, network segmentation, routing, switching, secure network protocols.
• Operating Systems: Deep hardening knowledge of Windows Server and various Linux distributions.
• Virtualization: VMware ESXi, Hyper-V, or equivalent hypervisor security.
• Cloud Platforms: Extensive experience with security services and best practices in at least one major cloud provider (AWS, Azure, or GCP).
• Identity & Access Management: Strong understanding of Active Directory, Azure AD, federated identity, SSO, MFA, and privileged access management (PAM).
• Endpoint Security: EDR solutions, host-based firewalls.
• Proficiency in scripting languages (e.g., Python, PowerShell, Bash) for automation and security tasks.
• Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, Ansible, CloudFormation).
• Solid understanding of common security frameworks (e.g., NIST CSF, ISO 27001), compliance regulations (e.g., GDPR, CCPA, HIPAA), and security best practices (e.g., CIS Benchmarks).
• Excellent analytical, problem-solving, and communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences.
• Qualifications:

Education:

Bachelors degree in computer science, Information Technology, or a related field. A masters degree is preferred.

Experience: 510+ years of progressive experience in cyber security, including at least 5 years in senior leadership roles.

Technical Skills: Deep understanding of cyber security frameworks (NIST CSF, NIST 800-53, MITRE ATT&CK)

Leadership Skills: Demonstrated experience building and managing enterprise security programs in complex, regulated environments.

Proven ability to influence at all levels, including executives and board members.

Excellent leadership, communication, and stakeholder engagement skills.

Problem-Solving: Strong technical foundation in network security, cloud security (GCP, AWS, Azure, OCI), security engineering, and incident response.

Cultural Awareness: Ability to work effectively in a multicultural environment and manage teams across different time zones.

Preferred Qualifications:

Experience working in a global organization with distributed teams.

Certification in (CISSP, CISM, CISA, CCSP, etc.) strongly preferred.

Experience and Certifications in ITIL, Agile and DevOps practices.

Experience working in Retail & Manufacturing.

Knowledge of managing regulatory environments such as HIPAA, SOX, PCI-DSS, GDPR.

Experience integrating security in agile, DevOps, and CI/CD pipelines.

Experience with containerization technologies (Docker, Kubernetes) and their security implications.

Familiarity with serverless computing security.

Experience with Security Information and Event Management (SIEM) systems and SOAR platforms.

Experience in a highly regulated industry.

Best Regards,

Syam.M| Sr.IT Recruiter

syambabu.m@technogenindia.com

www.technogenindia.com | Follow us on LinkedIn