Security Architect

Job Summary for Security Architect:

- Lead the development and implementation of strategic security architecture vision, standards, and frameworks aligned with business strategy.
- Provide technical security guidance for the design, installation, operation, and maintenance of information systems.
- Participate in the creation and documentation of security standards, policies, and compliance frameworks.
- Develop and implement security strategies for critical security infrastructure, including endpoints, mobile devices, containers, authentication, authorization, logging, and threat detection.
- Offer subject matter expertise on infrastructure (on-premises and cloud), application, and database security.
- Analyze business requirements and translate them into security requirements and controls.
- Conduct system security, vulnerability analyses, risk assessments, and integration studies.
- Collaborate with development teams to design and improve Secure Software Development Lifecycle (S-SDLC) processes.
- Enable and facilitate Proof of Concepts for new security technologies.
- Maintain in-depth technical knowledge of Microsoft data center technologies (Active Directory, Office 365, Azure, Windows Servers).
- Respond to security incidents and lead incident response efforts as needed.
- Migrate on-premises workloads to cloud environments and manage cloud security (Azure, AWS, Google Cloud Platform).
- Drive continuous improvement of Public Key Infrastructure (PKI) systems and security automation.
- Review and assess existing architecture for security gaps and recommend enhancements.
- Coordinate with IT and business teams to ensure compliance with security frameworks (e.g., CIS).
- Stay up to date with emerging security technologies and integrate them into architecture when appropriate.
- Represent the security team in change control activities, ensuring changes align with security best practices.
- Prepare and deliver formal security assessments and ad-hoc system security reports.
- Develop and track security metrics to demonstrate operational security posture.
- Perform other relevant security duties as assigned.

Qualifications & Skills:

- Bachelor’s degree in Computer Science, IT, or related field (preferred).
- Experience with container orchestration (e.g., Kubernetes) and microservices architecture.
- Knowledge of Zero Trust Network Architecture (ZTNA).
- Familiarity with compliance standards (PCI, GDPR, NIST, ISO27000).
- Possession of at least one security certification (e.g., CISSP, CISM, GSEC, CISA).
- Strong teamwork, communication, leadership, and stakeholder management skills.
- Expertise in network, firewall, mobile, and application security, including vulnerability management.
- Experience managing projects through the full system development lifecycle.
- Knowledge of web application security (OWASP Top Ten) and incident response.
- Fluency in English required; additional languages a plus.