Information Security Architect

About The Position

Requirements

• Bachelor’s degree in computer science, Information Security, Engineering, or a related field is required.
• 10+ years of progressive experience in information security, with at least 5 years focused on security architecture, engineering, or infrastructure design.
• Demonstrated experience designing enterprise security architectures for hybrid cloud environments, including IaaS, PaaS, and SaaS platforms.
• Proven track record of leading architecture reviews, threat modeling exercises, and security standards development in regulated industries (utilities, energy, or critical infrastructure preferred).
• Expert-level knowledge of security architecture frameworks (SABSA, TOGAF, NIST) and their practical application to enterprise IT environments.
• Deep understanding of cloud security architecture across AWS, Azure, and/or GCP, including identity federation, network security, data encryption, and workload protection.
• Strong expertise in identity and access management (IAM), privileged access management (PAM), Zero Trust principles, and federation/SSO technologies.

Nice To Haves

• Master’s degree in Cybersecurity, Information Systems, or related discipline is strongly preferred.
• Professional certifications required or strongly preferred: CISSP, CISSP-ISSAP, SABSA, TOGAF, or equivalent architecture credentials.
• Cloud security certifications (AWS Security Specialty, Azure Security Engineer, CCSP) are highly valued.

Responsibilities

• Lead architecture reviews for all major IT and engineering projects, ensuring security requirements are embedded from design through deployment.
• Conduct threat modeling and architecture risk assessments to identify design-level vulnerabilities and recommend mitigations.
• Develop and enforce security standards, guidelines, and design patterns for identity and access management (IAM), network segmentation, data protection, encryption, and API security.
• Own the security technology roadmap, evaluating emerging tools, platforms, and frameworks to strengthen Summit’s security posture.
• Partner with the Director of Information Security and GRC team to map technical controls to compliance frameworks (NIST CSF, C2M2, ISO 27001, SOC 2, PCI DSS, HIPAA).
• Advise on secure cloud architecture, including landing zone design, cloud security posture management (CSPM), and infrastructure-as-code (IaC) security guardrails.
• Design and govern Zero Trust architecture strategies, including micro-segmentation, least-privilege access, and continuous verification.
• Collaborate with enterprise architects, application teams, and infrastructure engineers to integrate security into CI/CD pipelines and DevSecOps practices.
• Mentor security engineers and analysts on architecture principles, secure design, and technical standards.
• Represent the security function in enterprise architecture governance boards, change advisory boards, and vendor evaluations.
• Stay current on threat landscape, emerging technologies (AI/ML security, quantum-safe cryptography), and evolving regulatory requirements to inform architecture decisions.

Benefits

• competitive pay
• medical/dental/vision
• other benefits that provide flexibility, choice and support to our employees when they need it most