Domain Architect - Access Governance

Job Summary

This role will act as a bridge (interface) between with HQ team and SSC Pune team to facilitate the design and implementation of end-to-end infrastructure and security solutions across on-prem, cloud, and hybrid environments, ensuring scalability, resilience, and compliance. Provides technical expertise for the IT SSC Team (s) while enabling integration and automation. Provides technical leadership and oversight at IT SSC to optimize performance, security posture, and overall enterprise IT operations.

Key Responsibilities

Engage with key users to understand business needs, challenges, and goals. Support in developing (technology) solutions on domain level aligned with organizational objectives. Define domain related processes and policies including complementary documentation. Support and consult in IT projects as well as lead domain initiatives including ensuring successful execution from planning to completion. Customize existing systems to meet specific user requirements (domain specific). Evaluate and recommend new processes/technologies for efficiency and effectiveness. Provide (technical) assistance to key users. Conduct training sessions on processes and potential software and hardware usage for domain specific topics. Analyse complex issues and propose effective solutions. Produce reports to guide decision-making.

Skill Requirements

Required Skills • Define and maintain end-to-end infrastructure and security architecture aligned with business and IT strategy • Design scalable, secure, and high-performing environments across on-prem, cloud, and hybrid platforms • Establish and enforce standards, policies, and best practices for infrastructure and security domains • Drive technology strategy, roadmap planning, and solution selection across infrastructure and security toolsets • Ensure implementation of secure, resilient, and highly available systems across platforms including:

• Identity & access management • Network and connectivity • Compute, storage, and virtualization • Cloud and container platforms • Design and enforce security architecture and controls covering:
• Identity, access, and privileged management • Network, endpoint, and data security • Monitoring, detection, and response capabilities • Define and implement cloud architecture and governance frameworks aligned with industry best practices (e.g., Azure Well-Architected principles), covering:
• Security and compliance • Reliability and performance • Cost optimization and operational excellence • Ensure compliance with regulatory, security, and governance frameworks (e.g., NIST, ISO, CIS, NIS2) and maintain audit readiness • Provide technical leadership and oversight for solution design, implementation, and integration across infrastructure and security domains • Enable seamless integration between infrastructure, cloud, and security platforms to ensure a unified and secure ecosystem • Promote adoption of automation and standardization using Infrastructure as Code (IaC) and modern DevOps practices • Define and monitor enterprise-level KPIs, performance metrics, and security posture, driving continuous improvement • Act as a technical authority for stakeholders and vendors, supporting solution evaluation, decision-making, and delivery governance

Other Requirements

• Relevant 10+ years of experience.
• Strong incident handling expertise across containment, eradication, recovery, and lessons learned.
• Hands-on network security knowledge (firewalls, IDS/IPS, WAF, VPN, Proxies, NAC) and packet/log analysis.
• Experience integrating cloud and identity telemetry; familiarity with Azure/M365 security preferred.
• Knowledge of frameworks and models: MITRE ATT&CK;, NIST 800-61 IR, NIST CSF, ISO 27001, NIS2.
• Excellent communication, stakeholder management, and executive reporting skills.
• Audit participation experience is must • Proven experience in: Enterprise architecture, Cloud transformation, Security architecture • Experience in large-scale enterprise environments

Preferred Certifications\\r\\n• CISSP, CISM, \\r\\n• CIS/NIST/ISO 27001\\r\\n• Cloud security (e.g., AZ500, SC200, CCSP).\\r\\n• Network security (e.g., NSE, PCNSA/PCNSE, CCNP Security).\\r\\n• CISSP/CISM\\r\\n Soft Skills\\r\\n• Strong architecture and design expertise\\r\\n• Strategic thinking and decision-making\\r\\n• Stakeholder management and communication\\r\\n• Problem-solving and analytical thinking\\r\\n• Ability to drive transformation initiatives\\r\\n