Security Architect

Role Overview :

We are seeking an experienced Security Architect to design, implement, and govern enterprise security architecture across cloud and on-premises environments. The ideal candidate will play a strategic and consultative role, ensuring security is embedded into platforms, applications, and infrastructure from the design phase through implementation and operations.

This position works closely with engineering, cloud, infrastructure, GRC, and business teams to establish secure design patterns, enforce security standards, and support compliance in regulated environments.

Job Description :

- 7+ years of experience in cybersecurity engineering, architecture, or infrastructure security.

- Strong understanding of :

1. Network and endpoint security

2. Cloud security (AWS/Azure/GCP)

3. Identity & Access Management (IAM/PAM)

- Security monitoring and incident response

- Experience working in regulated environments.

Preferred / Good to Have :

- Experience with cloud security frameworks and zero-trust architecture.

- Familiarity with security standards such as ISO 27001, NIST, CIS Benchmarks.

- Hands-on experience with security tooling (SIEM, EDR/XDR, vulnerability management, IAM platforms).

- Security certifications such as CISSP, CCSP, CISM, or equivalent.

What Were Looking For :

- Strong analytical and risk-based thinking

- Excellent stakeholder communication

- Ability to balance security with business and operational needs

- Proactive and consultative mindset

Key Responsibilities :

1. Security Architecture & Solution Design :

- Define, maintain, and evolve enterprise security architecture standards and reference architectures.

- Design secure solutions across :

1. On-premises and cloud infrastructure (IaaS, PaaS)

2. SaaS and custom applications

- Identity, access, and privileged access management

- Data protection, encryption, and key management

- Embed security into system design early in the project lifecycle (Secure-by-Design approach).

2. Risk, Compliance & Regulatory Alignment :

- Translate regulatory, contractual, and business security requirements into technical security controls (including ISO/IEC 27001 and similar frameworks).

- Support internal and external audits by validating architecture documentation and control implementation.

- Collaborate with GRC teams to manage risk acceptance, control gaps, and remediation plans.

3. Security Control Governance :

- Establish minimum security baselines for :

1. Endpoints and servers

2. Virtual machines and containers

3. Cloud platforms and workloads

- Review and approve solution designs, architecture diagrams, and third-party integrations.

- Participate in secure design reviews and threat modeling.

- Evaluate software and packages for vulnerabilities and cybersecurity compliance.

4. Cloud & Platform Security :

- Architect and secure usage of public cloud environments and SaaS platforms.

- Define and enforce guardrails including :

1. Network segmentation

2. Identity federation & conditional access

3. Logging, monitoring, and alerting

- Ensure shared-responsibility models are clearly understood and implemented across teams.

5. Collaboration & Advisory :

- Act as a trusted security advisor to engineering, application, infrastructure, and vendor management teams.

- Provide architectural guidance to prevent rework and reduce security risk.

- Mentor junior architects and security engineers and promote security best practices across teams.

6. Documentation & Communication :

- Maintain architecture standards, patterns, and reference diagrams.

- Create security decision records and technical documentation.

- Clearly communicate complex security concepts to both technical and non-technical stakeholders.

Required Qualifications :