Security Architect

Company Profile:
Founded in 1976, CGI is among the largest independent IT and business consulting services firms in the world. With 94,000 consultants and professionals across the globe, CGI delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Fiscal 2024 reported revenue is CA$14.68 billion and CGI shares are listed on the TSX (GIB.A) and the NYSE (GIB). Learn more at cgi.com. Job Title: Cyber Security Architect Position: Associate Consultant Experience: 10+ yrs Category: IT Infrastructure Main location: Bangalore Position ID: J0625-1553 Employment Type: Full Time Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 3 years of relevant experience. Job Description: Security Architect Enterprise, Network & Cloud Security We are seeking a highly experienced Security Architect to lead the design, implementation, and governance of comprehensive security solutions across infrastructure, applications, cloud, and network environments. The role requires strong alignment with Governance, Risk, and Compliance (GRC) frameworks, support for Security Operations (SOC) initiatives, and a practical, hands-on approach to security challenges. This is a strategic and technical leadership role, ideal for professionals with a minimum of 8ಊ years of progressive security experience, including at least 5 years in architecture roles. Key Responsibilities Security Architecture Develop, document, and maintain enterprise-wide security architectures across on-premises, cloud, hybrid, and edge environments. Define and promote security design principles, architecture patterns, and secure integration strategies for infrastructure, applications, APIs, and data flows. Embed security across solution development lifecycles (SDLC, CI/CD, DevSecOps). Network Architecture & Security Architect secure and resilient network infrastructures, including segmentation, firewalls, VPN, SD-WAN, and NAC. Design and implement Zero Trust Network Access (ZTNA) and network-level controls. Oversee security in both physical and software-defined network (SDN) environments. Implement and manage Role-Based Access Control (RBAC) across systems, networks, and applications to enforce least privilege and separation of duties. Cloud Security Lead the security architecture and posture management for AWS, Azure, and/or GCP. Implement IAM, CSPM, encryption, workload protection, and automation in cloud-native environments. Align cloud security practices with the shared responsibility model and regulatory compliance requirements. Infrastructure Security Design security controls for servers, endpoints, virtual environments, storage, and data centers. Implement infrastructure hardening, privileged access management (PAM), and security baselines. Build secure architectures for containerized platforms (e.g., Docker, Kubernetes, OpenShift). Application Security Integrate security into SDLC and DevSecOps pipelines. Oversee static/dynamic code analysis (SAST/DAST), secure coding practices, and API gateway security. Guide developers in secure design patterns and remediation of vulnerabilities. GRC Governance, Risk, and Compliance Lead development and enforcement of security policies, standards, procedures, and guidelines. Conduct risk assessments, gap analysis, and drive risk treatment plans. Ensure compliance with ISO 27001, NIST CSF, PCI-DSS, GDPR, HIPAA, SOC 2, etc. Partner with audit, risk, and legal teams to address security compliance activities. SOC & Threat Intelligence Collaborate with SOC and threat intelligence teams to improve detection, response, and threat hunting capabilities. Provide architectural input on SIEM, SOAR, UEBA, EDR/XDR, and threat detection platforms. Define logging, alerting, and monitoring strategies aligned to enterprise threat models. Stakeholder Engagement Serve as a trusted security advisor to business, IT, cloud, and development teams. Lead security design reviews, architecture governance boards, and executive risk briefings. Mentor junior security professionals and guide cross-functional teams on security best practices. Must to have Skills: Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, or a related discipline. 8ಊ+ years of overall experience in information security with 5+ years in security architecture. Hands-on experience in at least three of the following domains:Network Security, Application Security, Infrastructure Security, Cloud Security. Deep knowledge of GRC frameworks, and SOC tools and practices. Technical Expertise: Security technologies: SIEM, SOAR, IAM, DLP, CASB, EDR/XDR, VPN, WAF, NAC, PAM. Standards: ISO 27001, NIST CSF/RMF, OWASP Top 10, MITRE ATT&CK. Tools: Splunk, Microsoft Sentinel, CrowdStrike, Qualys, Tenable, Terraform, Jenkins, GitLab CI/CD. Platforms: AWS, Azure, GCP cloud security certification preferred. DevSecOps: SAST, DAST, IAST, SCA, IaC scanning, container security. Certifications: Mandatory: One or more CISSP, CISM, CCSP Preferred: AWS/Azure Security Specialty, TOGAF, CRISC, OSCP, SABSA Key Competencies Strategic mindset with strong hands-on capabilities. Excellent problem-solving, risk analysis, and threat modeling skills. Strong communication and presentation skills across technical and executive audiences. Proven team leadership and mentoring experience. Good to have Skills :

• Excellent customer interfacing skills.
• Excellent written and verbal communication skills.
• Participating in Daily Standups and weekly reviews
• Strong attention to detail and outstanding analytical and Problem-solving skills.
• Understanding of Business, emerging technologies in relevant industry (Banking/CIAM ) , strong understanding of trends (market and technology) in areas of specialization.

CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodations for people with disabilities in accordance with provincial legislation. Please let us know if you require a reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs. Life at CGI: It is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons Come join our team, one of the largest IT and business consulting services firms in the world