Enterprise Security Architect

About The Position

Requirements

• BA/BS Degree (4-year) in Computer Science, Cybersecurity, Engineering, Information Systems, or related field.
• 10+ years experience in IT and/or cybersecurity, with at least 5 years in a security architecture or engineering role.
• Proven ability to design secure enterprise systems and integrations across on-prem, cloud, and hybrid environments.
• Experience with identity and access management, network segmentation, encryption, logging/monitoring, and secure SDLC.
• Strong understanding of architectural frameworks (SABSA, TOGAF, or similar) and secure design methodologies.
• Experience conducting architecture risk assessments, threat modeling, and security reviews of enterprise systems.
• Expert-level knowledge of security technologies including firewalls, web application firewalls (WAFs), identity and access management (IAM), endpoint protection, cloud-native security controls, and SIEM/SOAR platforms.
• Strong familiarity with modern IT and application architectures, including public cloud platforms (AWS, Azure, GCP), containerization (e.g., Docker, Kubernetes), and DevOps/CI-CD pipelines.
• Proven ability to assess complex technical environments, conduct threat modeling, and deliver actionable risk mitigation strategies.
• Exceptional communication skills, with the ability to clearly articulate technical risks and solutions to both technical and non-technical stakeholders.
• Demonstrated ability to influence and collaborate across Security, IT, Legal, Compliance, and business units in a matrixed environment.
• Proficient in architecture modeling and documentation tools such as Lucidchart, Visio, and Confluence, with an emphasis on clarity and reusability.
• Strategic mindset with a hands-on approach; able to navigate between high-level architectural vision and detailed implementation considerations in fast-paced, evolving environments.

Nice To Haves

• Master's degree or advanced certifications preferred.
• Relevant certifications such as CISSP, SABSA, CCSP, AWS/Azure Security Certifications, or equivalent highly preferred.

Responsibilities

• Define and maintain enterprise-wide security architecture standards and blueprints across infrastructure, cloud, endpoint, and application layers.
• Ensure solutions are securely designed and aligned with business goals, regulatory requirements, and the CISO's strategic objectives.
• Provide expert guidance during solution design and implementation.
• Lead threat modeling, architecture reviews, and risk assessments as part of technical intake and governance processes.
• Serve as the security subject matter expert within project teams.
• Partner with Global Enterprise Services, Infrastructure, Application Development, and PMO to ensure secure integration and alignment of technical requirements.
• Develop and maintain reference architectures, secure configuration standards, and solution patterns.
• Ensure consistency with frameworks such as NIST, PCI-DSS, ISO 27001, and GDPR.
• Lead secure design of cloud-native and SaaS platforms, including IaaS and PaaS.
• Collaborate with Cloud Engineering and DevOps to implement secure-by-design deployment practices.
• Stay ahead of evolving threats and technology trends.
• Contribute to the long-term security architecture roadmap by identifying opportunities to improve the organization's security posture.