- Design and maintain enterprise security architecture across on-premises, cloud, and hybrid environments.

- Conduct comprehensive security architecture reviews to identify vulnerabilities, assess risk, and improve system and application designs.

- Design, implement, and manage network and cloud security controls, including firewalls, WAFs, load balancers, IDS/IPS, and VPNs.

- Perform regular system and application risk assessments, including vulnerability scans, to detect and mitigate security risks.

- Collaborate with IT, DevOps, and infrastructure teams to ensure security best practices are embedded into system, application, and network designs.

- Evaluate, recommend, and implement security tools and technologies such as IAM, SIEM, encryption, endpoint protection, and cloud-native security solutions.

- Continuously monitor emerging threats, vulnerabilities, and technology trends; recommend enhancements to improve the organization's security posture.

- Ensure compliance with internal security policies, regulatory requirements, and industry standards (e.g., ISO 27001, NIST, PCI DSS, HIPAA).

- Support security incident response, vulnerability tracking, and remediation planning.

- Conduct gap analyses and support security audits and governance activities.

- Provide detailed security risk assessments, architecture documentation, and mitigation recommendations to technical teams and senior management.

- Suggest and drive implementation of security improvements to reduce organizational risk.

- Maintain documentation of architectural decisions, risk evaluations, and compliance findings.