Senior Technology Architect

Job Description:

Responsibilities:

• Deliver solution and architecture guidance, training, and implementation support for next-generation networks, network protection, and cyber security technologies, including:
• Security service edge (SSE) / secure access service edge (SASE) - secure web gateway (SWG), cloud access security broker (CASB), zero-trust network architecture (ZTNA), firewall-as-a-service (FWaaS).
• SD-WAN (software-defined wide area network) and software-defined networking (SDN).
• AI/ML-driven network and security technologies.
• Endpoint protection platforms (EPP), endpoint detection and response (EDR), extended detection and response (XDR) solutions.
• Advanced intrusion prevention systems (IPS), intrusion detection systems (IDS), network access control (NAC), and DDoS protection.
• Identity security and authentication solutions (passwordless, password-based, certificate-based, MFA).
• Incident Response and Incident Candidateagement (IR/IM) solutions.
• Automated vulnerability management and patching.
• User and Entity Behavior Analytics (UEBA).
• Penetration testing and automated red teaming.
• Operational technology (OT) security.
• Provide technical guidance, training, and implementation support for hybrid cyber security operating models involving in-house and outsourced MSSP capabilities:
• MSSP integration and optimization.
• Security operations functions and architecture.
• Threat detection and incident response.
• SIEM, SOAR, EDR/XDR, and threat intelligence platforms in hybrid environments.
• Automation and orchestration workflows.
• Governance, risk, and compliance in hybrid operations.
• Provide subject matter expertise in NOC and SOC technologies, services, and tools including:
• SIEM.
• SOAR.
• Network traffic analyzers, performance monitoring, and configuration management tools.
• Candidateage and optimize SIEM, SOAR, EDR/XDR, CASB, IDR, and vulnerability management systems as part of SecOps infrastructure.
• Develop, test, and maintain threat detection use cases across identity, endpoint, email, network, and cloud.
• Lead complex incident analysis, deep-dive investigations, and root-cause analysis.
• Support telemetry ingestion, log normalization, and real-time correlation.
• Deliver training and operational guidance to IT and security teams on threat response workflows and defensive posture validation.
• Provide consultancy on advanced networking technologies (SD-WAN, SASE, ZTNA, NDR) and their integration with security tools for seamless observability and control.
• Conduct baseline reviews, vulnerability triage, and coordinate with MSSPs on remediation.
• Maintain security content (rules, dashboards, playbooks) across shared platforms.
• Support cross-board threat intelligence sharing.
• Develop and deliver technical training courses to strengthen cyber resilience.
• Present to senior and executive management and external senior stakeholders.
• Provide regular status updates and project reports.
• CollaboXX with multiple stakeholders to define, develop, and implement solutions.
• Ensure alignment with industry and legislative requirements (e.g., Bill 194 / EDSTA).
• Perform other duties as assigned.

• Bachelor's degree in computer science, cyber security, or a related field. (Must Have)
• Postgraduate degree (M.Sc., Ph.D.) in computer science, cyber security, or engineering. (Nice To Have)
• Relevant vendor certifications or equivalent work experience.
• Cyber security certifications (Preferred: CISSP, CISM, CCSP; Other: CEH, CISA, CRIClient). (Must Have)

• Network & Network Security 25%
• 5+ years with network infrastructure (LAN/WAN, VPN, VLAN) and hardware (switches, routers, firewalls). (Must Have)
• 5+ years with SDN/SD-WAN technologies (Fortinet, Meraki, Palo Alto, Aruba). (Must Have)
• 2+ years with network monitoring/management tools (SolarWinds, FortiManager, Panorama).
• 2+ years with traffic analysis tools (PRTG, Wireshark).
• 2+ years with data logging formats (Syslog, IPFix, NetFlow).
• 2+ years configuring/troubleshooting network protocols (MPLS, VPLS, VLAN Trunking Protocol).
• Experience with network load testing, performance analysis, risk assessments, and emerging technology evaluations.

• 10+ years in cyber security and next-generation network security. (Must Have)
• 5+ years deploying secure architectures and automation workflows. (Must Have)
• Proven expertise in SSE/SASE, AI/ML security, EPP/EDR/XDR, IPS/IDS, NAC, identity security, IR/IM, automated vulnerability management, UEBA, penetration testing, OT security, MITRE ATT&CK/D3FEND/ATLAS frameworks, and NIST CSF v2/CIS Controls v8.

• Manage and optimize SIEM, SOAR, EDR/XDR, CASB, IDR, and vulnerability platforms. (Must Have).
• Develop threat detection use cases across multiple domains. (Must Have)
• Conduct investigations, root-cause analysis, incident response. (Must Have)
• XXgn and implement hybrid security operations models (MSSP integration, governance, automation). (Must Have).

• 5+ years presenting to executives, leading technical work, preparing reports, maintaining security content, and delivering cyber security training.

• Knowledge of client standards (GO-ITS) and legislation (Bill 194 / EDSTA).

• Strong knowledge of network and cyber security architectures.
• Proficiency with advanced security tools and hybrid operations.
• Excellent communication and stakeholder management skills.
• Strong analytical, troubleshooting, and risk assessment abilities.
• Ability to manage multiple complex initiatives simultaneously.