Product Cyber Security Architect - CEH/IEC62443 - 10+ Years of exp

Role Description

This is a full-time, on-site role for a Product Cyber Security Architect at Cygnus Professionals Inc., located in Hyderabad. The role involves designing and implementing robust security architectures, managing application security strategies, and ensuring cybersecurity measures are in place. Additional responsibilities include overseeing network and information security to protect data integrity, conducting risk assessments, and aligning systems with international security standards such as CEH and IEC62443 frameworks.

Qualifications

• Bachelor of Science/Engineering in cyber security, computer science or a related engineering discipline
• 8+ years of product cyber security engineering and software systems development experience; at least 4 years hands‑on experience with penetration testing methodologies and tools.
• In depth knowledge of IEC 62443 and related cybersecurity standards.
• In‑depth knowledge of requirements captures, cyber security threat modeling and systematic discovery of threats, as part of Secure Development Lifecycle, with broad understanding of potential vulnerabilities at different layers of hierarchical systems
• Cyber security certifications such as OSCP, GSEC, CEH
• Knowledge of state‑of‑the‑art security analysis tools and various product cyber security safeguards. These include threat modeling, source code analysis, dynamic analysis, penetration testing and audit/compliance tools
• Excellent written and verbal communication and presentation skills. Adept at communicating with globally disperse cross functional teams.
• Strong knowledge in various cryptographic systems and requirements for authentication, authorization and encryption for various types of systems
• Intimate knowledge and experience with incident response management and risk assessment

Responsibilities

• Perform DAST, SAST & Pentest for different products
• Perform Threat Modeling and Architecture reviews for new products and design changes with existing products
• Handle Product Cyber Incident Response activities and Active contribution to Risk Management
• Work with product development teams towards secure DevOps activities and CI/CD integration issues with Security tools
• Work with product development teams and carry out functional cyber risk assessments to support their cyber requirements throughout the entire development cycle.