Description :

Key Responsibilities :

- Develop and maintain the comprehensive enterprise security solutions strategy and architectural roadmap. Translate strategic initiatives into actionable, modern, and scalable security designs that protect our digital assets while enabling business innovation.

- Serve as a key architect for integrated security solutions, ensuring seamless interoperability between different security domains.

- Lead the architectural design and strategy for modernizing our Identity and Access Management (IAM) landscape towards modernizing the IAM footprint.

- Drive the initiative for a unified authentication system, leveraging technologies such as Microsoft Entra ID and SailPoint to enhance user experience and strengthen access controls.

- Provide support to define the security architecture for hardening our multi-cloud environments in Microsoft Azure and Google Cloud Platform (GCP) and standardization of patterns. Develop cloud security standards, patterns, and best practices to ensure the secure configuration and operation of our cloud workloads and services.

- Provide architecture in modernizing our Public Key Infrastructure (PKI) and certificate management processes. Architect and guide the implementation of a centralized and automated certificate lifecycle management solution using DigiCert.

- Architect and strengthen our endpoint security posture by integrating and optimizing advanced protection platforms like CrowdStrike and Microsoft Defender.

- Support and provide architectural guidance for the Network Access Control (NAC) refresh initiative to enforce zero trust principles at the network edge.

Qualifications :

- 10+ years of experience in enterprise cybersecurity, with at least 5 years in a security architect role.

- Proven experience developing enterprise-wide security strategies and roadmaps.

- Hands-on experience in architecting and implementing security solutions in a large, complex enterprise environment.

- Deep expertise in Identity and Access Management (IAM), including recent experience with MS Entra ID and SailPoint.

- Strong architectural knowledge of Cloud Security principles for Azure and GCP, including infrastructure-as-code and container security.

- Demonstrated experience with PKI / Certificate Management and tools like DigiCert.

- In-depth knowledge of Endpoint Security solutions (CrowdStrike, Defender) and Network Access Control (NAC).

- Comprehensive understanding of Zero Trust Architecture principles and their practical application. Familiarity with modern network and infrastructure security controls.

- Excellent communication skills, capable of explaining highly complex security concepts to diverse audiences, from engineers to executive leaders.

- Relevant certifications such as CISSP, CISM, CCSP, or TOGAF and other architect-level certifications are highly desirable.