Corporate Security Architect

Location

India

Posted

3 days ago

Salary

0

Seniority

Mid Level

Job Description

Corporate Security Architect

JUARA IT SOLUTIONS

Role Description We are seeking an experienced Corporate Security Architect to lead security assessments for third-party vendors and enterprise technologies. This role is responsible for strengthening the organization's security posture by conducting Third-Party Risk Assessments (TPRA), evaluating SaaS applications, cloud services, and enterprise platforms, and providing risk-based recommendations to support secure business operations. The ideal candidate will collaborate with Procurement, Legal, IT, Privacy, Compliance, and business teams to assess security risks, review vendor security controls, and ensure compliance with organizational security standards and governance frameworks. Key Responsibilities - Third-Party Risk Assessments (TPRA) - Conduct comprehensive security assessments of third-party vendors, suppliers, and service providers. - Review vendor security documentation, including SOC 2 reports, ISO 27001 certifications, penetration testing reports, security questionnaires, and architecture documents. - Evaluate security controls related to identity and access management, data protection, infrastructure security, business continuity, and incident response. - Document assessment findings, risk ratings, remediation recommendations, and approval decisions. - Corporate Technology Security Reviews - Perform security assessments of SaaS applications, enterprise platforms, cloud services, and corporate technologies. - Evaluate authentication, authorization, encryption, integrations, logging, monitoring, and overall security posture. - Assess emerging technologies, including AI-enabled solutions, for security risks and compliance. - Provide risk-based recommendations to support secure technology adoption. - Assessment Operations & Stakeholder Management - Execute security assessments in accordance with established policies, standards, and governance processes. - Maintain complete assessment documentation, supporting evidence, findings, and recommendations. - Track remediation activities and monitor assessment progress through completion. - Partner with Procurement, Legal, IT, Privacy, Compliance, and business stakeholders throughout the assessment lifecycle. - Escalate critical security risks through appropriate governance channels. - Reporting & Operational Metrics - Prepare reports covering assessment volumes, turnaround time, risk trends, remediation status, and overall program performance. - Develop stakeholder-ready summaries and support internal and external audit requirements. - Contribute to continuous improvement initiatives by identifying opportunities for process optimization and assessment automation. Key Deliverables - Completed Third-Party Risk Assessment (TPRA) reports. - Security assessment reports for SaaS applications, cloud services, and enterprise technologies. - Risk findings with severity ratings and remediation recommendations. - Assessment documentation, supporting evidence, and approval recommendations. - Remediation tracking and validation reports. - Monthly operational dashboards and assessment metrics. - Executive-ready reports and stakeholder presentations. - Recommendations for improving assessment processes and program scalability. Qualifications - Bachelor's degree in Cybersecurity, Information Security, Computer Science, or a related discipline. - 8+ years of experience in Information Security, Security Architecture, Risk Management, or Corporate Security. - Hands-on experience managing or supporting Third-Party Risk Management (TPRM/TPRA) programs. - Experience conducting security assessments for SaaS platforms, cloud services, and enterprise applications. - Strong knowledge of security frameworks and standards, including NIST CSF, ISO 27001, SOC 2, CIS Controls, cloud security, and Identity & Access Management (IAM). - Experience reviewing vendor security documentation and performing risk-based security assessments. - Excellent analytical, documentation, communication, and stakeholder management skills. Preferred Qualifications - Experience supporting enterprise SaaS environments and cloud-based technologies. - Hands-on experience with Governance, Risk & Compliance (GRC) platforms and vendor risk management tools. - Experience developing security dashboards, metrics, and operational reporting. - Professional certifications such as CISSP, CISM, CRISC, CCSP, or CISA are preferred. - Experience evaluating AI-enabled technologies and defining security requirements for AI adoption.

Related Categories

Related Job Pages

More Security Engineer Jobs

Ensemble Health Partners logo

Manager, Cybersecurity Governance, Risk & Compliance

Ensemble Health Partners

Ensemble Health Partners is a hospital and healthcare company that partners with client hospitals to help them develop processes, train teams, reach their finan

• The Cybersecurity Manager – Third-Party Risk Management (TPRM) is responsible for the operational leadership, effectiveness, and continuous maturation of the organization's Third-Party Risk Management program. • Working closely with the Director of TPRM, this role leads a team responsible for vendor risk assessments, contract security reviews, continuous monitoring, remediation governance, and risk reporting activities. • Provide day-to-day leadership, guidance, and oversight for TPRM team members. • Coach, mentor, and develop team members through performance feedback, career development planning, training opportunities, and formal performance evaluations. • Manage team capacity, workload prioritization, resource allocation, and operational challenges to ensure timely delivery of assessments, contract reviews, strategic initiatives, and departmental objectives. • Accountable for team performance, service delivery metrics, quality standards, and achievement of operational goals. • Identify staffing, skillset, and resource needs to support current operations and future program growth. • Foster a culture of accountability, collaboration, innovation, and continuous improvement. • Provide operational oversight and quality assurance for third-party risk assessments, contract security reviews, continuous monitoring activities, and risk evaluations, ensuring consistent application of established methodologies and quality standards. • Own the operational health of the enterprise third-party portfolio by ensuring assessment service levels, continuous monitoring, remediation tracking, and executive visibility objectives are achieved. • Serve as the primary escalation point for complex vendor risk decisions, including risk acceptances, exceptions, compensating controls, remediation plans, and vendor approval recommendations. • Review and approve high-risk assessment findings, risk ratings, remediation recommendations, and exception requests to ensure consistency with enterprise risk standards. • Collaborate with business stakeholders on critical vendor engagements and initiatives.

United States
$118K - $167.7K / year
Highmark Health logo

Principal Information Security Architect – Data Security

Highmark Health

Creating remarkable health experiences, freeing people to be their best.

Full TimeRemoteTeam 10,001+Since 1852H1B Sponsor

• Develop systems and component architectures and APIs that meet the test of time. • Articulate and evangelize architectural principles reciprocally with engineering, architecture and product teams that ensure system components fit securely, are sustainable, and align with company’s business direction. • Analyze and recommend novel technologies, architectural solutions (and associated business cases) to the various technology executives across the company which simultaneously optimize value, risk, spend & design footprints. • Influence enterprise solutions architects and engineers to define, develop, maintain, and communicate the technology and platform strategy, guidelines, and re-usable design patterns to all levels including the Highmark Health executive team. • Work with external and internal engineering teams to provide continuous architecture and design mentorship/leadership and be a source of support that ensures successful product delivery and operational excellence in production, including leadership and support for application development and change management activities. • Establish relationships with key architects and executive technology leadership across the enterprise technology organization and collaborate on promoting architectural standard methodologies. • Collaborate with key internal and external partners such as security, developers, development managers, product and program management and senior technical and business executives to drive the Architecture strategy, reference enterprise architecture documents, functional specifications, designs, and architectural libraries. • Resolve approaches for new areas by quickly investigating and synthesizing the state of the art and available technologies including leading the development of enterprise solutions which meet current and future business requirements. • Take a consultative approach to develop, present and share the value and vision of proposed architectures and solutions to a wide audience. • Promote architecture standard methodologies and mentor key technical people within the Data Product organization. • Champion a culture of innovation in an environment that requires high levels of scalability, security and reliability for our most critical enterprise cloud and 'on premise' applications and infrastructure.

Louisiana + 4 moreAll locations: Louisiana | North Carolina | Maryland | Pennsylvania | Washington
$129.1K - $214.5K / year
HIKINEX logo

Security Consultant

HIKINEX

Design Your Dream Team

ContractRemoteTeam 201-500H1B No Sponsor

• Design and implement security best practices for application modernization and cloud migration initiatives. • Secure ASP.NET Core applications using modern authentication and authorization frameworks. • Configure and manage AWS security services, including IAM, Secrets Manager, Parameter Store, KMS, WAF, GuardDuty, and CloudTrail. • Implement security logging, monitoring, and observability using CloudWatch, OpenTelemetry, and structured logging. • Manage secrets, encryption, and least-privilege access controls across cloud environments. • Conduct security reviews for application and database modernization projects. • Ensure the protection of PHI/PII data through secure cloud architecture and security best practices. • Collaborate with development, infrastructure, and project teams to ensure compliance with security standards and regulatory requirements.

Maryland
Anomali logo

Senior Account Executive, SIEM, Security Analytics

Anomali

Intelligence-Driven Extended Detection and Response (XDR)

Full TimeRemoteTeam 201-500Since 2013H1B Sponsor

• This position will focus on full life cycle field sales and enterprise account development/expansion in the Ohio Valley region, based in Michigan.

Michigan