Project Role: Security Architect

Project Role Description: Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills: Third Party IT Risk Management

Good to have skills: Security Architecture Design

Minimum 3 year(s) of experience is required

Educational Qualification: 15 years full time education

Summary:

Seeking an experienced Security Architect/ Security Compliance Professional to lead and support the design, implementation, and maintenance of security governance, risk, and compliance (GRC) frameworks. This role ensures that the organization complies with industry standards and regulations such as ISO/IEC 27001, PCIDSS, NIST CSF, SOC 2, TISAX and other security frameworks.. The candidate will work cross-functionally to manage audits, assess risks, and drive continuous improvement in the security posture of the organization. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security managed operations, ensuring that all security measures align with organizational standards and compliance requirements. You will also engage in continuous improvement initiatives to enhance the security posture of the organization.

Roles & Responsibilities:

-Act as SME in Third-Party Risk Management, performing independent assessments of suppliers/vendors.
Conduct detailed due-diligence on vendors including questionnaires, evidence reviews, and risk rating.
Expected to perform independently and become an SME GRC professional.
Required active participation/contribution in client discussions.
Contribute in providing solutions to compliance related complex situations
Conduct regular assessments of security framework based or cloud security controls to ensure compliance with established standards.
Collaborate with cross-functional teams to identify and mitigate potential security risks.

Professional & Technical Skills:

Strong knowledge of Third-Party Risk Management (TPRM), vendor risk assessments, and due-diligence processes.
Proficient in Information Security, Cyber Security and Governance, Risk, and Compliance (GRC).
Experience in preparing reports, dashboards, and metrics for leadership on vendor risk status.
Has significant exposure to evolving landscape of security compliance requirements
Lead and manage security compliance initiatives across the organization.
Manage/ Conduct gap assessments and implement controls in alignment with compliance standards (e.g., ISO 27001, PCIDSS, NIST, SOC 2, GDPR and other relevant frameworks).
Coordinate and support internal and external security audits, including evidence collection and remediation planning.
Partner with business, IT, and legal teams to ensure compliance requirements are understood and implemented.
Has exposure or working knowledge of Third party risk assessments (TPRM)
Develop and maintain security policies, procedures, and documentation in line with regulatory needs.
Monitor compliance status and prepare reports and metrics for leadership.
Educate teams on compliance requirements and drive a culture of security awareness.
Relevant certifications : Any one -ISO27001LA/LI, ISO3100 or CISA, CISM, CRISC, or equivalent.
.

Additional Information:

• The candidate should have minimum 3 years of experience in Third Party IT Risk Management.
• This position is based at our Bengaluru office.
• A 15 years full time education is required.

15 years full time education

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
Visit us at www.accenture.com

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.