Cybersecurity Architect
Location: Rosemead, CA Hybrid
Long term Contract
Rate: W2 or 1099
We are looking for a Cybersecurity Architect to bridge the gap between IT, engineering, product, and Cyber Security teams to evaluate and design security solutions across enterprise Cybersecurity technology environments (on-premises, hybrid, SaaS, and where applicable, cloud). You will translate business objectives and regulatory requirements into security architectures, standards, and repeatable patterns that enable delivery teams to build securely. Additionally, you will serve as a subject matter expert and technical leader for Cybersecurity architecture and technology. Responsibilities
Serves as a trusted cyber security architecture subject matter expert (SME), aligning security solutions to strategic objectives, business outcomes, and risk posture across enterprise technology domains Partners with business, IT, and cyber stakeholders to elicit and scope end-user requirements; translates needs into clear security architecture guidance, control objectives, and design recommendations
Evaluates technical feasibility and architecture tradeoffs for proposed solutions, ensuring security requirements are practical, scalable, and consistent with enterprise standards
Owns, develops, and maintains enterprise security reference architectures, secure design patterns, and guardrails for common capabilities (e.g., identity, network security, endpoint/workload protections, application security, data protection, logging/monitoring, and secure remote access)
Establishes and governs security architecture principles aligned to recognized security engineering practices (e.g., least privilege, defense-in-depth, secure-by-design, segmentation) and drives adoption through standards, architecture review, and enablement
Conducts architecture and design reviews for new initiatives and major changes; documents security decisions, assumptions, residual risks, and compensating controls, and recommends actionable remediation paths
Defines security requirements and control objectives for platforms, systems, and services; ensures requirements are measurable, testable, and traceable through implementation and validation (while not owning delivery execution)
Collaborates with the Cybersecurity Technology team to shape product/technology roadmaps, maturity paths, and prioritized capability improvements based on threat landscape, business direction, and architecture gaps
Fosters strong relationships with senior leaders and stakeholders to understand and map business priorities, advising on how to engage security architecture to enable secure, timely outcomes
Develops and maintains security architecture documentation (standards, patterns, diagrams, decision records) and provides technical guidance, coaching, and mentorship to uplift engineering and cyber team capabilities
Required Skills/Attributes
Ten or more years of experience in information technology, information security and/or cybersecurity
. Experience designing security architectures for enterprise-scale environments, including identity, network segmentation, data protection, and security monitoring
Working knowledge of control design and implementation (e.g., IAM, MFA, encryption, logging/monitoring, vulnerability management, endpoint/workload protections)
Experience partnering with engineering and infrastructure teams to deliver secure solutions in iterative delivery models; ability to translate security requirements into actionable technical designs
Ability to communicate complex technical concepts to diverse audiences and produce clear architecture artifacts (reference architectures, standards, patterns, and risk decision records)
Desired Skills/Attributes
Bachelors or Masters degree in Cybersecurity, Computer Science, Information Systems, or a related field.
Three or more years of experience in cloud cybersecurity.
Strong collaboration, communication, and stakeholder engagement skills. Experience designing and architecting cloud cybersecurity solutions. Experience as a technical leader or mentor.
Experience architecting security for hybrid environments (on-prem, cloud, and SaaS), including secure connectivity, segmentation, and identity boundaries
Familiarity with secure SDLC/DevSecOps practices and common tooling (code scanning, dependency scanning, configuration and policy validation, and CI/CD security controls)
Experience with Zero Trust concepts, identity governance, privileged access management (PAM), and strong authentication/conditional access strategies
Experience defining logging/telemetry requirements and partnering with SOC/SIEM teams to develop detections, response playbooks, and measurable security outcomes
Knowledge of security frameworks and control mapping (e.g., NIST, CIS, ISO 27001) and experience supporting audits and compliance initiatives
Strong ability to influence without authority and drive adoption of standards through enablement, reusable patterns, and practical guardrails that improve developer and operator experience
Never miss an opportunity! Create an alert based on the job you applied for.
