Principal Architect - Security

About The Position

Requirements

• 12+ years in security, infrastructure, or cloud consulting, including 7+ years focused on Azure security, IAM, and enterprise governance.
• Proven experience leading complex client engagements, influencing senior stakeholders, and owning architectural outcomes across multiple initiatives.
• Deep hands-on and architectural expertise across Microsoft Entra ID, Conditional Access, MFA, Identity Protection, PIM, access reviews, lifecycle governance, Azure Policy, Defender, Sentinel, RBAC, and Zero Trust design.
• Strong understanding of hybrid identity, privileged access, and security controls for cloud-first enterprises.
• Strong experience with Microsoft Purview capabilities including data classification, sensitivity labeling, DLP, compliance controls, audit, eDiscovery, data lifecycle management, and AI/data security governance.
• Ability to design governance models that support secure adoption of Copilot, AI applications, and agent-based solutions.
• Demonstrated ability to support pre-sales and solution development, including leading workshops, defining scope, developing roadmaps, building solution narratives, estimating delivery approaches, and supporting proposals and executive presentations.
• Strong consulting and delivery leadership skills, including risk management, technical oversight, stakeholder communication, and the ability to balance strategic advisory responsibilities with hands-on execution.
• Excellent written, verbal, and presentation skills with the ability to engage technical teams, business stakeholders, and executive audiences.
• Recognized as a credible thought leader with strong facilitation, mentorship, and client relationship skills.
• Strongly preferred certifications include SC-100 (Cybersecurity Architect Expert), AZ-500 (Azure Security Engineer), SC-300 (Identity and Access Administrator), and relevant Microsoft Purview, compliance, or security certifications.

Nice To Haves

• Additional certifications such as CISSP, CCSP, CISM, or GIAC are highly desirable.
• Broad understanding of Azure platform architecture, security operations, infrastructure-as-code, and integration across identity, networking, data, and cloud governance domains.
• Experience advising senior client leaders on security strategy, governance operating models, regulatory readiness, Zero Trust transformation, and responsible AI adoption.

Responsibilities

• Provide senior technical leadership across multiple strategic client engagements.
• Lead executive and architectural design sessions, define target-state security architectures, and guide delivery teams through implementation with a strong focus on quality, scalability, and measurable business outcomes.
• Act as a trusted advisor to client stakeholders, including security, infrastructure, data, and executive leaders.
• Shape security roadmaps, advise on operating models and governance, and bring forward innovative perspectives on Azure security, identity modernization, data protection, and AI governance.
• Remain hands-on in delivery while overseeing complex programs from strategy through implementation.
• Partner with delivery leadership to align milestones, manage technical risk, remove blockers, and ensure successful outcomes across architecture, implementation, and adoption phases.
• Design and lead implementation of enterprise security architectures across Azure and hybrid environments, including Microsoft Entra ID, Conditional Access, Identity Protection, Privileged Identity Management (PIM), role-based access control, Zero Trust controls, workload protection, and security monitoring patterns aligned to least privilege and strong governance.
• Lead engagements focused on Microsoft Purview, information protection, data security posture management, data loss prevention, compliance, and governance for Copilot, AI applications, and AI agents.
• Help clients establish secure and compliant approaches for data access, policy enforcement, monitoring, lifecycle management, and responsible AI enablement.
• Contribute approximately 25-30% of role capacity to sales enablement and solution development activities.
• Partner with account teams and solution leaders to shape opportunities, lead discovery conversations, develop solution approaches, support estimates and statements of work, contribute to proposals, and articulate differentiated value in client pursuits.
• Help scale the security practice through reusable assets, reference architectures, accelerators, and delivery standards.
• Mentor architects and engineers, coach teams on emerging Microsoft security capabilities, and strengthen organizational readiness across Azure security, identity, data governance, and AI security disciplines.

Benefits

• 401(K) with match up to 50% of your 6% contributions of eligible pay
• Generous PTO providing a minimum of 15 days in addition to 9 paid company holidays and 2 floating personal days
• Two medical plan options
• Option for vision and dental coverage
• 100% employer paid coverage for life and disability insurance
• Paid leave for birth parents and non-birth parents
• Option for Healthcare FSA, HSA, and Dependent Care FSA
• $67.00 monthly tech and home office allowance
• Utilization and/or discretionary bonus eligibility
• Employee Assistance Program