Cyber Security Architect - Senior Professional

Job Description
Position: Deputy General Manager - Product Security (Security Advisor)
Location: Navi Mumbai (Mahape) Experience: 12-15 Years Qualification: B.E. / B.Tech / M.E. / M.Tech (Computer Science / IT / related discipline)
Role Overview
Lauritz Knudsen Electrical & Automation is seeking an experienced Product Security Advisor to lead and drive Security by Design and Shift-Left Security initiatives across connected products and platforms. This role is responsible for adoption, governance, and execution of Secure Development Lifecycle (SDL) practices in line with IEC 62443-4-1, advising R&D and product teams on cybersecurity architecture, secure implementation, and regulatory compliance.
The role combines deep technical expertise, process ownership, and assertive stakeholder engagement, ensuring cybersecurity requirements are embedded from early design through product release.
Key Responsibilities

• Product & Secure Development Lifecycle Leadership
• Act as Subject Matter Expert (SME) to ensure cybersecurity is prioritized and embedded in offer/product development from concept and design phase onward.
• Drive implementation of Secure Development Lifecycle (SDL) practices aligned with IEC 62443-4-1, including:
  o Threat modeling
  o Secure design and architecture
  o Secure coding practices
  o Security testing and validation
• Support development teams in risk-driven cybersecurity decision-making throughout the product lifecycle.
• Security Governance & Compliance
• Ensure adherence to IEC 62443 standards, including exposure to:
  o IEC 62443-4-2 (Product Security Requirements)
  o IEC 62443-3-3 (System Security Requirements)
• Support internal SDL audits, cybersecurity reviews, and regulatory compliance activities.
  General
• Advise on regulatory, data protection, and privacy requirements for connected products and cloud-based offers.
• Represent product development teams in Business Unit, PSO, and corporate cybersecurity forums.
• Technical Advisory & Risk Management
• Provide expert guidance on:
  o Threat modeling (STRIDE and equivalent frameworks)
  o Risk analysis and CVSS scoring
  o Vulnerability triage, remediation, and closure
• Support teams in maintaining secure software environments, including:
  oSecure coding
  o Static code analysis
  o Software Composition Analysis (SCA)
  o Software Bill of Materials (SBOM)
• Advise on DevSecOps practices and secure CI/CD pipelines. Metrics, Maturity & Continuous Improvement
• Define and collect SDL and cybersecurity metrics to support data-driven security strategies.
• Monitor and improve organizational maturity using Cybersecurity Maturity Frameworks.
• Track SDL effectiveness, risk posture, and security KPIs and report to R&D leadership.
  Training, Awareness & Community Engagement
• Conduct cybersecurity training sessions, workshops, and awareness programs for development and architecture teams.
• Actively participate in internal and external cybersecurity communities and stay updated on emerging threats, standards, and regulations.
• Continuously update leadership on relevant cybersecurity trends, policies, and legislative changes.
  Key Technical & Functional Competencies
  Strong expertise in Product Security and Cloud Security
  In-depth understanding of OT & IoT technologies, protocols, and architectures
  Hands-on experience with:
  o Secure Development Lifecycle (IEC 62443-4-1 or equivalent)
  o Threat modeling and security testing
  o Secure design and secure coding
  o Vulnerability management and risk-driven security
  Strong knowledge of:
  o IEC 62443, NIST frameworks
  o Data protection, privacy screening, and data security