Principal Cybersecurity Architect (CSA)

Job Request Title: IT Architect Principal

Location: Remote

Specifically for a Principal Cybersecurity Architect (CSA)

Responsible for defining, governing, enterprise cybersecurity architecture through security reference architectures, patterns, and guardrails. This role ensures that security design decisions across Global IT, manufacturing, cloud, application, data, AI, and OT environments are intent based, risk driven, and aligned to cybersecurity strategy, policies, and regulatory obligations.

The role partners deeply with Enterprise Architecture (EA), delivery teams, product and platform owners, and security domain teams to shape secure designs early, reduce rework, and ensure scalable, repeatable security outcomes through standardized patterns and architecture reviews.

Key Responsibilities

• Supports internal and formal Cybersecurity Review sessions
• Ability to lead others within same team
• Acts as a trusted advisor within existing CSA Team
• Influences without authority by establishing credibility through well reasoned, well documented architectural guidance.
• Coaches and mentors other cybersecurity architects, setting expectations for architectural rigor, documentation quality, and decision making.
• Supporting overall Product and Service group under Globa Cybersecurity Architecture
• Produces various Cyber Architecture published content
• Defines and maintains enterprise cybersecurity reference architectures, security patterns, and architectural guardrails across domains including cloud, application

• security, identity, data protection, logging, IoT/OT, and AI.
• Establishes the minimum-security architecture bar for security reviews
• Ensures consistent cyber interpretation across programs and platforms.
• Ensures cybersecurity architecture alignment with security strategy, enterprise architecture direction, regulatory requirements, and risk appetite.
• Lead and participate in Cybersecurity Architecture reviews, validating solution designs against approved standards, patterns, and risk considerations.
• Guides teams to architect secure-by-design solutions, focusing on risk reduction rather than checklist compliance.
• Identifies security architecture gaps and drives remediation through updated patterns, reference designs, or targeted guidance.
• Provides authoritative cybersecurity architecture dispositions and recommendations to influence delivery decisions.
• Develops reusable security design patterns, templates, and decision flows to enable faster and more consistent adoption across the enterprise.
• Partners with various external teams to translate cyber patterns into practical implementation guidance.
• Drives adoption of approved security patterns through CyberHub tooling, intake workflows, and metrics tracking.
• Collaborates with EA, Cyber leadership, and platform owners to define security architecture roadmaps aligned to business priorities and emerging threats.
• Evaluates emerging technologies and architectural shifts in threat landscape (e.g., AI, Zero Trust, cloud native platforms) and translates them into actionable security guidance.
• Performs complex risk tradeoff and analysis to inform strategic security architecture decisions.

Core Competencies

• Security Architecture & Design Develops and governs security architecture artifacts including reference architectures, patterns, design guardrails, trust boundaries, and threat

• mappings.

• Risk Driven Decision Making Balances security risk, business urgency, and delivery constraints to guide pragmatic security outcomes.
• Strategic Mindset Anticipates future threat and technology trends and translates them into scalable security architecture strategies.
• Influence & Collaboration Builds strong partnerships across EA, IT, Digital, OT, and within Cybersecurity teams to drive early and effective security engagement.
• Architectural Governance Applies structured frameworks and review discipline to manage change, consistency, and technical debt within the cyber landscape of function.

What This Role Is Not

• Not an implementation or engineering development role
• Not a control checkbox or compliance only function
• Not a downstream design reviewer brought in after decisions are made
• This role exists to shape decisions early, standardize security intent, and scale secure design across the enterprise.

Experience & Education

• 7 12+ years in Architecture and with a Cyber Focus
• Bachelor s degree in Computer Science, Information Technology, Engineering, or related field (or equivalent cyber experience).
• Significant relevant experience in cybersecurity architecture, with demonstrated leadership across complex, multi domain environments.
• Deep experience with enterprise security frameworks, architectural modeling, and modern security patterns.
• Experience mentoring senior architects and influencing enterprise level security decisions.