Company Profile:
At CGI, we’re a team of builders. We call our employees members because all who join CGI are building their own company - one that has grown to 72,000 professionals located in 40 countries. Founded in 1976, CGI is a leading IT and business process services firm committed to helping clients succeed. We have the global resources, expertise, stability and dedicated professionals needed to achieve. At CGI, we’re a team of builders. We call our employees members because all who join CGI are building their own company - one that has grown to 72,000 professionals located in 40 countries. Founded in 1976, CGI is a leading IT and business process services firm committed to helping clients succeed. We have the global resources, expertise, stability and dedicated professionals needed to achieve results for our clients - and for our members. Come grow with us. Learn more at www.cgi.com.
This is a great opportunity to join a winning team. CGI offers a competitive compensation package with opportunities for growth and professional development. Benefits for full-time, permanent members start on the first day of employment and include a paid time-off program and profit participation and stock purchase plans. We wish to thank all applicants for their interest and effort in applying for this position, however, only candidates selected for interviews will be contacted. No unsolicited agency referrals please.
Job Title: Security Architect
Position: Associate Consultant
Experience:8+Years
Category: Software Development/ Engineering
Main location: Bangalore
Position ID: J0625-0283
Employment Type: Full Time
Job Description :
Role description
We are looking for a highly experienced Senior Security Architect to lead the design and governance of security solutions across infrastructure, application, and cloud environments, while ensuring alignment with GRC (Governance, Risk, and Compliance) frameworks and supporting Security Operations (SOC) initiatives. The ideal candidate will be responsible for developing holistic and scalable security architectures that proactively manage risks and meet evolving compliance requirements.
Key Responsibilities
Security Architecture
• Develop, document, and maintain enterprise-wide security architectures covering on-premise, cloud, and hybrid environments.
• Define security design principles and architecture patterns for infrastructure, applications, and APIs.
• Integrate security into enterprise architecture and solution development lifecycle (SDLC, CI/CD).
GRC – Governance, Risk, and Compliance
• Lead security governance initiatives, establish policies, standards, and procedures.
• Perform risk assessments, control gap analysis, and mitigation planning.
• Ensure compliance with regulatory and industry standards (e.g., ISO 27001, NIST CSF, GDPR, HIPAA, PCI-DSS, SOC 2).
• Coordinate with internal audit, risk, and legal teams on security compliance activities.
SOC & Threat Intelligence
• Collaborate with SOC teams on threat detection strategies and incident response plans.
• Provide architectural input on SOC tools including SIEM, SOAR, UEBA, EDR/XDR, and threat intel platforms.
• Develop threat models, security use cases, and logging/alerting architectures for enterprise monitoring.
Infrastructure Security
• Architect security solutions for networks, servers, endpoints, storage, and data centers.
• Implement Zero Trust principles, network segmentation, and infrastructure hardening.
• Oversee security controls in virtualization and containerized environments (e.g., Docker, Kubernetes).
Cloud Security
• Design and enforce security controls in AWS, Azure, and/or GCP environments.
• Implement Cloud Security Posture Management (CSPM), IAM, encryption, and secure workload designs.
• Ensure compliance with cloud shared responsibility models and perform cloud-specific risk assessments.
Application Security
• Integrate security into SDLC and DevSecOps pipelines.
• Oversee static/dynamic code analysis (SAST/DAST), secure coding practices, and API security.
• Collaborate with development teams to resolve vulnerabilities and establish secure design patterns.
Stakeholder Collaboration
• Act as a trusted security advisor to technology and business teams.
• Present security architecture and risk findings to senior management and executive stakeholders.
• Lead security design reviews and architectural governance forums.
Qualifications & Skills
Must-Have:
• Bachelor's or Master’s degree in Cybersecurity, Information Systems, Computer Science, or related field.
• 10+ years of experience in information security, with at least 5+ years in a security architecture role.
• Proven experience in security architecture across infrastructure, cloud, and applications.
• Strong understanding of GRC practices and SOC operations.
Technical Expertise:
• Security technologies: SIEM, SOAR, IAM, DLP, EDR, CASB, VPN, WAF, firewalls.
• Standards: ISO 27001/2, NIST CSF/RMF, OWASP, MITRE ATT&CK.
• Tools: Splunk, Sentinel, CrowdStrike, Qualys, Tenable, Terraform, Jenkins, GitLab CI/CD.
• Cloud platforms: AWS, Azure, GCP (certification preferred).
• DevSecOps: SAST, DAST, IAST, SCA, container security, IaC scanning.
Certifications (Preferred):
• Must Have: CISSP, CISM, or equivalent
• Preferred: AWS/Azure Security Specialty, CCSP, TOGAF, CRISC, OSCP, SABSA
Key Competencies
• Strategic thinking with hands-on capability
• Strong analytical and problem-solving skills
• Excellent communication and stakeholder engagement
• Team leadership and mentoring abilities
Behavioural Competencies :
• Proven experience of delivering process efficiencies and improvements
• Clear and fluent English (both verbal and written)
• Ability to build and maintain efficient working relationships with remote teams
• Demonstrate ability to take ownership of and accountability for relevant products and services
• Ability to plan, prioritise and complete your own work, whilst remaining a team player
• Willingness to engage with and work in other technologies
Note: This job description is a general outline of the responsibilities and qualifications typically associated with the Virtualization Specialist role. Actual duties and qualifications may vary based on the specific needs of the organization.
CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodations for people with disabilities in accordance with provincial legislation. Please let us know if you require a reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs.
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.