Role: Senior Cyber Security Architect
Location: Hyderabad
About the job
Our Team:
Our Security Architecture team, reporting directly to the CISO alongside the Security Operations & SOC and Governance, Risk, and Compliance teams, plays a pivotal role in designing and implementing robust security solutions across all digital domains. Under the leadership of the Security Architecture Lead, this team ensures our organization's technological infrastructure is secure, aligned with industry best practices, and effectively supports our cybersecurity strategy. The Cyber Technology team (3 FTEs) works as a sub-team within the Security Architecture team, focused on delivering across portfolio optimization (outside of health, science, manufacturing and security), data loss prevention, identity access management and technology.
Main responsibilities:
The Senior Cyber Technology FTE, reporting to the Security Architecture Lead, will play a pivotal role in ensuring the optimization and security of our technology environments. This role involves assessing and enhancing our cybersecurity solutions portfolio, excluding Health & Science and Manufacturing & Science domains. Key responsibilities include:
Design and implement secure cloud solutions based on best practices and compliance requirements.
Develop and maintain the security architecture for our Azure environment in alignment with the Azure Well Architected Framework.Collaborate with application and infrastructure teams to integrate security into the development lifecycle.Deploy, manage, govern, and define the strategy for company directories and identities, ensuring secure access to resources while minimizing the risk of privilege abuse.Develop, maintain, monitor security KPIs and dashboards to manage security risks, track deviations and produce appropriate remediation and improvement plans.Manage security features in Azure, including network security, identity and access management, internet-facing firewall, and data protection.Define security requirements for Virtualization, Azure Policies, Storage Accounts, Key Vaults, Databases, etc.Ensure secure configuration and management of cloud resources across multiple subscriptions.Monitor Cloud Security Posture Management (CSPM) for continuous security posture assessment.Conduct technical audits and contributing to internal audits. Defining, coordinating, and performing sanitation actions.Participate in global projects (Cyber, Infrastructures, Business) around security breaches anticipation and remediations, mergers and acquisitions, EntraID entitlement management, major developments around security technologies and solutions.Develop and maintain documentation, standards, and best practices for privilege management on systems, fostering a culture of continuous improvement and proactive risk management.Stay current with industry trends, emerging technologies, and best practices in identity and access management to enhance cybersecurity resilience.Review and approve configurations for systems, networks, and applications to ensure that they meet security standards.Responsible for designing, implementing and maintaining reusable architectural security design patterns.
Experience:8-12 years of professional experience (equivalent combination of experience and education accepted)Previous work in an international environment.Demonstrated experience in working within cybersecurity teams, particularly specialised cyber technology capabilities, covering portfolio optimisation, Cloud Security, identity and access management, Network Security and Data Security.Demonstrated experience with the Microsoft 365 suite – including Intune, SharePoint Online, OneDrive, Exchange, Teams and so onProven track record of contributing to the design and implementation of security solutions aligned with organizational goals.Soft skills:Broad experience in working in large digital teams, with an understanding of how digital and business processes are linked.Stakeholder management and communication skills, especially when interacting with senior leadership.Skilled problem solver and self-starter.A hands-on pragmatic attitude to driving change.Positive, "can-do" attitude.Technical skills:Proficiency in the Microsoft tech stack and leveraging ecosystem synergies.Experience with AGILE or similar project management frameworks.Working knowledge of common information security management frameworks (ISO/IEC 27001, ITIL, NIST, NISD, CISSP/CCSP, QxP, CIS20).Education:Bachelor’s and master’s degree (preferred) in any of the following fields of study: Information Technology, Computer Science, Cybersecurity or Information SecurityLanguages:English
Pursue progress, discover extraordinary
Better is out there. Better medications, better outcomes, better science. But progress doesn’t happen without people – people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let’s be those people.
At Sanofi, we provide equal opportunities to all regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, or gender identity.
Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!
Pursue progress, discover extraordinaryBetter is out there. Better medications, better outcomes, better science. But progress doesn’t happen without people – people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let’s be those people.
At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, ability or gender identity.
Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!