Global Security Architect

Colliers International

41d•Remote

About The Position

We are seeking a highly motivated and experienced Global Security Architect to join our global information security team. The successful candidate will be responsible for defining, maintaining, and governing an end-to-end security solution design that spans global processes, data, people, and technology. This strategic role involves creating conceptual, logical, and implementation architecture views aligned with global business needs. A key focus will be to provide expert recommendations on security best practices that are business enablers, balancing the risk tolerance of Colliers while ensuring systems are secure and private by design. Lead the security architecture strategy for cloud migration and modernization initiatives, specifically within Google Cloud Platform (GCP) and Microsoft Azure environments. Ensure designs leverage cloud-native security controls (e.g., Google Cloud Armor, Azure Sentinel, VPC Service Controls) effectively. Partner with Engineering and DevOps teams to embed security into the CI/CD pipeline ('Shift Left'). Architect secure containerization strategies (Kubernetes/GKE/AKS) and API security frameworks. Develop governance and security guardrails for the adoption of emerging technologies, including Generative AI and Large Language Models (LLMs), ensuring safe business enablement. Develop, maintain, and govern the global security architecture framework, translating it into robust security designs for all enterprise programs and projects to ensure a consistent and compliant posture. Serve as a key member of the Architectural Review Board, providing security recommendations on technology initiatives that enable business innovation while balancing the company's risk tolerance. Collaborate with Project Managers, Solution Designers, and technical teams to integrate security and privacy into solution designs. Lead the implementation of new security tools and technologies, overseeing their integration into the existing global security architecture. Create and maintain comprehensive security technical architecture design documents and diagrams. Identify security gaps in existing and proposed architectures and recommend changes or enhancements. Conduct technical documentation reviews, ensuring security considerations are well-defined and implemented. Support the development and enforcement of Data security/Application security policies, standards, and procedures. Conduct security reviews and assurance activities to identify risks and validate security compliance across corporate systems. Continuously monitor the evolving security landscape and technological advancements to adapt and refine risk-based security strategies.

Requirements

A minimum of 10-15 years of progressive experience in cybersecurity, with at least 7 years in a security architecture role, preferably within a large, multinational organization.
Must include demonstrated experience leading large-scale cloud migrations.
Deep expertise in designing Zero Trust architecture, moving the organization away from perimeter-based security to identity-centric security models.
Bachelor of Science or Master of Arts in Computer Science, Information Security, or a related field.
Certified Information Systems Security Professional such as CISSP, CISM or equivalent.
Strong understanding of security frameworks such as NIST, ISO 27001, TOGAF, or SABSA, and their practical application in cloud environments.
Reference Architectures: Demonstrated knowledge of, or hands-on experience with, cloud cybersecurity reference architectures such as Microsoft’s Cybersecurity Reference Architecture (MCRA) and Google Cloud Security architecture.
Technical Documentation: Strong documentation skills for security designs, policies, and procedures.
Strong knowledge of common vulnerabilities, OWASP Top 10, exploitation techniques, API Security, and Container Security (Docker/Kubernetes).
Ability to communicate effectively with technical and non-technical stakeholders, providing security direction and guidance.

Nice To Haves

Cloud-specific certifications (e.g., Google Professional Cloud Security Engineer, Microsoft Certified: Cybersecurity Architect Expert) are highly preferred.

Responsibilities

Defining, maintaining, and governing an end-to-end security solution design.
Creating conceptual, logical, and implementation architecture views aligned with global business needs.
Providing expert recommendations on security best practices.
Leading the security architecture strategy for cloud migration and modernization initiatives.
Partnering with Engineering and DevOps teams to embed security into the CI/CD pipeline.
Architecting secure containerization strategies and API security frameworks.
Developing governance and security guardrails for the adoption of emerging technologies.
Developing, maintaining, and governing the global security architecture framework.
Serving as a key member of the Architectural Review Board.
Collaborating with Project Managers, Solution Designers, and technical teams to integrate security and privacy into solution designs.
Leading the implementation of new security tools and technologies.
Creating and maintaining comprehensive security technical architecture design documents and diagrams.
Identifying security gaps in existing and proposed architectures and recommend changes or enhancements.
Conducting technical documentation reviews.
Supporting the development and enforcement of Data security/Application security policies, standards, and procedures.
Conducting security reviews and assurance activities.
Continuously monitoring the evolving security landscape and technological advancements.