160 Security Architect jobs in Hyderabad

• Experience in datacentre, cloud and network
• Hands-on experience in AWS and GCP cloud.
• Experience in Containers, Kubernetes and micro services
• Experience in Terraform
• Experience in advance networking in public cloud
• Terraform certification preferred
• Cloud Engineering or Security Certification preferred – AWS Certified Solutions Architect (professional), AWS Certified Advanced Networking Speciality, AWS Certified Security, GCP Cloud Architect, GCP Network Engineer, GCP Cloud Security Engineer or similar.

• Experience in datacentre, cloud and network
• Hands-on experience in AWS and GCP cloud.
• Experience in Containers, Kubernetes and micro services
• Experience in Terraform
• Experience in advance networking in public cloud
• Terraform certification preferred
• Cloud Engineering or Security Certification preferred – AWS Certified Solutions Architect (professional), AWS Certified Advanced Networking Speciality, AWS Certified Security, GCP Cloud Architect, GCP Network Engineer, GCP Cloud Security Engineer or similar.

Design and maintain the application, data and cybersecurity architecture to support security, scalability resilience, and risk management requirements of AIR Global’s data, applications, IT systems, on-premises and in cloud infrastructure.

• Review and support the security design for new IT projects, ensuring alignment with organizational security policies and standards.
• Collaborate with project teams to identify security requirements and integrate security controls into the project lifecycle.
• Design and implement secure architecture for Azure environments, leveraging Azure security services and best practices.
• Ensure compliance with Azure security standards and manage security configurations for Azure resources.
• Develop and enforce security measures for APIs, including authentication, authorization, and threat protection.
• Implement API security best practices and manage API gateways to ensure secure data exchange.
• On-Premises Network Security:
• Design secure network architectures for on-premises environments, including segmentation, firewalls, and intrusion detection systems.
• Architect and oversee the implementation of security measures for eCommerce platforms, particularly Magento, ensuring compliance with industry standards and best practices.
• Architect DevsecOPS, CI/CD pipeline.
• Design and support microservice architectures to enhance system scalability, flexibility, Security and maintainability.
• Collaborate with cross-functional teams IT and security team to understand technical, IT security and business requirements and translate them into well-architect solutions.
• Support risk assessments and develop mitigation strategies to ensure the security and integrity of data and IT systems.
• Stay updated with the latest trends and technologies in data management, security architecture, and eCommerce platforms.
• Provide technical leadership and guidance to development teams, ensuring best practices in coding, design, and architecture.
• Prepare detailed documentation of architectural designs, security protocols, and implementation plans.
• Participate in the evaluation and selection of new technologies and tools to enhance the organization's capabilities.

Experience & Qualification:

• Minimum of 5-7 years of experience in solution architecture, with a focus on data management and cybersecurity.
• Demonstrated experience in architecture and design solutions using Azure Data Lake and other data analysis tools.
• Hands-on experience with security architecture for eCommerce platforms, particularly Magento.
• Experience in developing and implementing microservice architectures.
• Familiarity with cloud security, application, database and api architecture best practices.
• Computer Science or Relevant Degree

Any of the three-certification listed below:

• Microsoft Certified: Cybersecurity Architect Expert
• Microsoft Certified: Azure Security Engineer Associate
• Trend Micro Certifications
• Microsoft Certified: Identity and Access
• Certified Data Management Professional (CDMP)
• AWS Certified Solutions Architect: Validates ex

Skills and Competencies:

• Understanding of cybersecurity frameworks (e.G., NIST, ISO 27001) and compliance requirements (e.G., GDPR, HIPAA).
• Knowledge of designing secure networks, applications, and cloud Architecture, including understanding firewalls, VPNs, and micro service architecture.
• Understanding of IAM principles, including user provisioning, authentication, and authorization techniques.
• Familiarity with security tools, such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), and endpoint protection.
• Strong design knowledge and experience working with Trend Micro Vision One, XDR platform, email security, EDR, email security, PAM, IPS, WAF and DLP technologies.
• Strong design and supporft on experience working with Azure/AWS security controls such as Defender, Purview, IAM, Entra ID etc.
• The ability to verify solutions and gain assurance that they are fit for purpose through demonstrable evidence of controls and testing
• Strong understanding of the changing threat landscape and how this may affect our systems
• The ability to challenge concerns and report through appropriate channels
• Self-drive, motivation and the ability to work independently to deliver expected outcomes
• Strong analytical and report writing skills

API Security

• Understanding of API Protocols: Knowledge of REST, SOAP, and GraphQL.
• Authentication and Authorization: Familiarity with OAuth, JWT, and API keys.
• Threat Protection: Implementing rate limiting, IP whitelisting, and DDoS protection.
• Data Encryption: Ensuring data is encrypted in transit and at rest.
• API Gateway Management: Experience with tools like Azure API Management, Kong, or Apigee.

Azure Architecture

• Azure Services: Proficiency with Azure services such as Azure Virtual Machines, Azure Kubernetes Service (AKS), Azure Functions, and Azure Storage.
• Networking: Understanding of Azure Virtual Networks, Subnets, and Network Security Groups.
• Security Best Practices: Implementing Azure Security Center recommendations and Azure Policy.
• Infrastructure as Code (IaC): Experience with ARM templates, Bicep, or Terraform for deploying Azure resources.
• Monitoring and Logging: Using Azure Monitor, Log Analytics, and Application Insights for tracking and diagnosing issues.

Identity and Access Management (IAM)

• Azure Active Directory (AAD): Deep knowledge of AAD, including user and group management, conditional access policies, and identity protection.
• Role-Based Access Control (RBAC): Implementing and managing RBAC in Azure to control access to resources.
• Single Sign-On (SSO): Configuring SSO for applications using AAD.
• Multi-Factor Authentication (MFA): Enforcing MFA for enhanced security.

About Us:

Marriott International Inc. , headquartered in Bethesda, Maryland, USA, was founded in May 1927 by J. Willard Marriott and Alice S. Marriott with a modest nine-seat A&W root beer stand. Guided by the family's leadership and core principles, Marriott International today has grown into a global hospitality giant, operating approximately 9,000 properties and over 30 leading brands in more than 140 countries and territories.

From such humble beginnings to becoming the world’s largest hotel company, Marriott International has never stopped searching for inventive ways to serve its customers, provide opportunities for its associates, and grow their business. At Marriott Tech Accelerator center (MTA), Hyderabad, India, Marriott is exploring the world we live in and all its possibilities. At Marriott Tech Accelerator, we are a team of passionate engineering minds dedicated to creating and building cutting-edge solutions that streamline operations and elevate guest experiences.

Marriott Tech Accelerator center is fully owned and operated by ANSR. All associates at Marriott Tech Accelerator will be ANSR employees, delivering services exclusively to ANSR's client, Marriott International.

Role Title: Senior Network Engineer II – SecOps (Security Ops)

Position Summary:

The Senior Network Reliability Engineering (NRE) Security Operations (SecOps) is the subject matter expert in designing and implementing the Network security strategy and platforms for the next-gen operations for all Marriott International (MI) networks including Property Networks, Datacenter/Cloud Networks, and Corporate Networks. This role will work closely and collaboratively with a matrix team of expert network architects and engineers to drive the adoption of NRE practices and operating models across all network product towers, and around globe. As the Senior NRE SecOps Engineer, the candidate focuses on defining and executing the zero-trust strategy to prevent unauthorized access to Marriott network as well as meet stringent compliance requirements. The candidate will be responsible to articulate and effectively execute a vision to address increasing complexity, scale of modern IT systems, and ensure real-time asset visibility, assessment, remediation, and access control to Marriott services. (S)He will be expected to bridge the gap by implementing security strategies and next-gen zero trust solutions to make sure all system components are meeting Marriott network access and security compliance requirements at granular level. This role is accountable for establishing technical level relationships and partnering with all business disciplines, other MI teams, solution providers/vendors, and operational partners to define and implement the Network NRE zero trust security roadmap, building and enforcing the standards defined in it.

Job Responsibilities:

Maintaining Goals:

• Submit reports in a timely manner, ensuring delivery deadlines are met.
• Promotes the documenting of project progress accurately.
• Provides input and assistance to other teams regarding projects.

Demonstrating and Applying Discipline Knowledge:

• Provides technical expertise and support to people inside and outside of the department.
• Demonstrates knowledge of job-relevant issues, products, systems, and processes.
• Demonstrates knowledge of function-specific procedures.
• Keeps up-to-date technically and applies new knowledge to job.
• Uses computers and computer systems (including hardware and software) to enter data and/ or process information.

Delivering on the Needs of Key Stakeholders:

• Understands and meets the needs of key stakeholders.
• Develops specific goals and plans to prioritize, organize, and accomplish work.
• Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
• Collaborates with internal partners and stakeholders to support business/initiative strategies
• Communicates concepts in a clear and persuasive manner that is easy to understand.
• Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Demonstrates an understanding of business priorities

Skill and Experience:

• 6+ years' experience with network security tools related products
• Experience in installing, configuring, and troubleshooting of zero trust security tools (Cisco ISE, Forescout, Firewall Management solution such as Firemon, Palo Alto Panorama, Checkpoint MDS and other similar tools)
• Must possess expertise in designing and implementing policies in the tools mentioned above
• Experience with one or more Cloud Computing platforms (e.G. Amazon AWS, Microsoft Azure, Google Compute Engine)
• Knowledge and experience in wireshark/tcpdump/nmap and related analysis techniques
• Experience in developing, documenting, and managing the requirements gathering process and provide detailed design and implementation plan to support the requirements throughout the project life cycle
• Field experience and knowledge of foundational data networking and IP technologies including (ARP, TCP/IP, UDP, DHCP, DNS, NAT and others)
• Understanding of TACACS+, RADIUS
• Experience in Agile methodologies, daily stand-up meetings, sprint planning sessions and user story preparations
• Hands-on experience with common routing and switching platforms (Cisco, Juniper, HP/Aruba etc.)
• Demonstrated experience in delivering written documents detailing network solutions and diagrams
• Technical knowledge in Load Balancing such as ELBs, NLBs, F5 BigIP

Preferred:

• Advanced Degree (e.G., MS, PhD) in Computer Science or other technical discipline or MBA, preferably with a focus on technology
• Experience with managing network security tools in a hospitality industry a plus
• Experience in leveraging public APIs for developing automation scripts
• Experience in installing, configuring, and troubleshooting Aruba ClearPass
• Strong preference to have product certifications (CCIE, PCNSE, FMSE and others)
• Team player with the ability to collaborate and work with cross functional teams in multiple time zones
• Experience in researching emerging technologies and trends, standards, and products and synthesizing into clear technology roadmaps and strategies
• Strong knowledge of emerging tools, applications, and systems for attaining best-in-class network security posture across the enterprise
• Excellent problem-solving skills working independently and through leading outcomes for cross functional teams
• Excellent understanding of change management, testing requirements and techniques, to ensure high availability and business readiness of platforms
• Strong attention to detail with an ability to operate effectively across multiple priorities
• Ability to perform independently as a member of a team and through cross functional initiatives
• Proven track record of driving transformation in network technologies, tools, and processes through a data driven continuous improvement methodology
• Demonstrated experience in improving reliability, performance, and agility of complex enterprise networks
• Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
• Strong influencing skills and an ability to overcome barriers while driving change
• Excellent verbal and written communication skills for a wide range of audiences including executives, business stakeholders, and IT teams
• Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
• Strong influencing skills and an ability to overcome barriers while driving change
• Excellent verbal and written communication skills for a wide range of audiences including executives, business stakeholders, and IT teams.

Education and Certifications:

• Graduate degree in an engineering or computer science discipline and/or equivalent experience/certification

Work location: Hyderabad, India.

Work mode: Hybrid

Marriott’s core values:

At Marriott, our core value make us who we are. We believe that success is never final. As we change and grow, the beliefs that are most important to us stay the same—putting people first, pursuing excellence, embracing change, acting with integrity, and serving our world. Being part of Marriott Tech Accelerator means being part of a proud history and a thriving culture.

About the Company

As a Security Architect, you will play a key role in designing, securing, and advancing our enterprise security posture across cloud infrastructure, application development, and DevSecOps pipelines.

Responsibilities

Security Architecture & Engineering

• Define and maintain security architecture blueprints for cloud (AWS, Azure) and hybrid environments
• Provide strategic guidance for securing application code, APIs, container stacks, and CI/CD pipelines
• Lead threat modeling, architecture analysis, and design reviews for new and existing systems
• Create and update security reference architectures aligned to NIST, CIS, and industry best practices

Cloud and Infrastructure Security

• Define guardrails for cloud infrastructure (IaaS, PaaS) security
• Design controls including network segmentation, encryption, IAM/rBAC, and workload protection
• Partner with Platform Engineering to implement infrastructure-as-code security (e.g., Terraform review, IaC scanning)

Application Security & DevSecOps

• Integrate security controls into the secure SDLC, including SAST, SCA, IaC scans, and container scanning (e.g., Snyk)
• Partner with Product Engineering and DevOps to implement CI/CD gating policies based on vulnerability severity
• Guide secure coding practices and train development teams on OWASP Top 10 and secure design patterns
• Support the adoption of risk-based vulnerability prioritization

Vulnerability Management & Risk Governance

• Contribute to enterprise vulnerability management strategy
• Analyze risks from CVEs in cloud, app, and infrastructure layers
• Recommend remediation and compensating controls when SLA compliance cannot be met
• Collaborate with operations and compliance teams to prepare for audits (SOC 2, ISO 27001, HIPAA)

• Design, implement, and maintain enterprise-level information security architecture.
• Develop and enforce security policies, standards, and procedures.
• Conduct risk assessments and vulnerability analyses.
• Architect solutions for network, data, application, and cloud security.
• Oversee the implementation of security controls and technologies.
• Collaborate with IT and development teams to ensure secure system design.
• Lead incident response planning and disaster recovery efforts.
• Stay current with cybersecurity threats, trends, and regulations.
• Provide technical leadership and guidance on security matters.
• Ensure compliance with relevant security frameworks and standards.

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
• Minimum of 8 years of experience in information security, with at least 4 years in a security architecture role.
• Extensive knowledge of security principles, frameworks (ISO 27001, NIST), and best practices.
• Proven experience designing and implementing secure network, cloud, and application architectures.
• Expertise in security technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection.
• Strong understanding of cryptography, identity and access management, and data privacy.
• Excellent analytical, problem-solving, and decision-making skills.
• Exceptional communication, presentation, and leadership abilities.
• Relevant certifications such as CISSP, CISM, or TOGAF are highly desirable.