Cybersecruity Architect -Remote

0 views
Skip to first unread message

Shaheen Syed

unread,
1:55 PM (3 hours ago) 1:55 PM
to

Cybersecruity Architect -SaaS Remediation specialist-TCS

Remote

Responsibilities :

  • Act as liaison between ATA IT/IS, AZL business owners, Group IT/IS, and SaaS vendors.
  • Validate applicability and define remediation approach
  • Coordinate and track implementation through completion
  • Collect remediation evidence and documentation
  • Submit completed items to the Recommendation Resolution Group
  • Support clarification requests
  • Track and Govern Contract based recommendations as well along with Configuration based recommendations

Out of scope:

  • Priority 2 or 3 recommendations
  • Non‑SaaS platforms
  • Security testing or assessments
  • Risk ownership or approval authority
  • Contract negotiation or legal drafting
  • BAU operational support or CAB approvals

Skill requirements :

  • Very broad and deep understanding of Cloud Security concepts. CCSK/CCSP/related cloud certifications are highly desired.
  • Working knowledge of cloud security concepts in AWS & Azure for SaaS products is highly desired
  • Should have a strong consultative/advisory mindset with an irrefutable, impeccable recommendation to be provided. Should have end to end visibility on how a recommendation will manifest when implemented including possible challenges faced, system modifications needed to change, new build planning, compliance with regulatory aspects and smooth operations. Recommendation should not backfire at any cost on agreed parameters, context, technical setting
  • High sense of vendor product documentation reading and understanding, ability to grasp gaps from design phase to ops phase, ability to ask right technical questions to SaaS product vendors across all security aspects meeting ATA’s policies. Basically, what you would do here is a solid product evaluation, inspect the product working by throwing in a security scenario, gather working evidences to pass/fail a security control for the SaaS vendor and be clear on what is getting approved.
  • Solid vendor-based communication skills, reviewing security reports from vendors (SOC 2 Type 1 &2, CSA Star, etc), design diagrams, workflow evaluations, maturity model evaluations (vendor dependent on their versions) and see how they fit within ATA guidelines/policies/frameworks
  • Very good documentation skills including architecture diagrams and presentations
Reply all
Reply to author
Forward
0 new messages