Security Architect

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Zscaler Architecture

Good to have skills :NAMinimum
2 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:We are seeking an experienced and driven Cloud Security Engineer with a strong focus on Zscaler security technologies, email security, and cloud security best practices. The ideal candidate will have a solid background in enterprise security solutions, cloud architectures, and SaaS-based security platforms.
Roles & Responsibilities:- Configure, manage, and troubleshoot Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) platforms.- Design and implement security policies in Zscaler cloud firewall and proxy modules.- Monitor and enhance email security platforms (e.g., valimail, abnormal security , Microsoft Defender for Office 365).- Ensure protection against phishing, spoofing, and malware through DKIM, SPF, and DMARC implementation and tuning.- Perform cloud security posture management (CSPM) and support secure cloud migration.- Work closely with network and application teams to enforce zero trust architecture using Zscaler.- Analyze security logs, alerts, and incidents to drive continuous improvement.- Respond to security incidents and conduct RCA (Root Cause Analysis).- Support compliance and audit activities across cloud and email platforms.- Maintain documentation and assist in developing security playbooks and SOPs.Professional & Technical
Skills:

- Strong working knowledge of Zscaler ZIA / ZPA, including policy creation, traffic forwarding, and troubleshooting- Expertise in email security technologies (O365 ATP, DMARC, SPF, DKIM, etc.)- Good understanding of cloud platforms (Azure, AWS, GCP) and associated security models- Familiarity with SIEM, DLP, CASB, and Secure Web Gateway (SWG)- Ability to interpret logs and perform packet capture analysis (e.g., Wireshark)- Knowledge of industry standards such as NIST, ISO 27001, CIS Benchmarks- Scripting knowledge (PowerShell, Python) is a plus
Additional Information:- The candidate should have 3+ years of hands-on experience in cloud security, email security, and network security- This position is based at our Pune office.- Preferred certifications:Zscaler Certified Professional (ZCP/ZIA/ZPA) and Microsoft Certified:Security, Compliance, and Identity Fundamentals- A 15 years full time education is required. Bachelors degree in computer science, Information Security, or related fieldQualification
15 years full time education