Security Architect

About The Position

Requirements

• Deep security architecture expertise
• Strong Microsoft platform knowledge
• Consulting credibility
• Ability to translate complex requirements into secure, practical, and scalable solution designs.
• Strong Microsoft security and cloud architecture expertise across Microsoft 365, Entra ID, Azure, Purview, Defender, Conditional Access, RBAC, workload identities, app registrations, and governance controls.
• Experience designing secure architectures for cloud, SaaS, identity, data protection, and AI-enabled workloads, including control mapping and trust boundary definition.
• Working knowledge of Microsoft 365 Copilot, Copilot Studio, Power Platform, Azure OpenAI, Azure AI Foundry, Microsoft Graph API, and adjacent AI or agent platforms from a security and governance perspective.
• Ability to produce reference architectures, architecture diagrams, standards, decision frameworks, and client-ready design documentation.
• Experience with threat modeling, secure design review, identity architecture, data protection controls, compliance considerations, and adversarial thinking for modern cloud platforms.
• Ability to guide implementation teams with practical guardrails, hardening patterns, and secure configuration recommendations without overengineering the solution.
• Ability to support technical pre-sales, architecture workshops, proposal development, and early-stage delivery for cybersecurity and AI-related offerings.
• Self-sufficient senior individual contributor who can assess client needs, design secure solution architectures, establish practical guardrails, support client-facing technical discussions, and help turn sound architecture decisions into repeatable delivery models.
• Independent, self-directed, and effective at managing multiple priorities while producing high-quality, evidence-based architecture output.
• Strong written, verbal, technical, and presentation skills with the ability to explain architecture decisions and security tradeoffs clearly to both technical and executive audiences.
• Able to assess current-state environments, identify control gaps, and design practical target-state security architectures.
• Comfortable participating in client-facing discussions, technical solutioning, proposal support, architecture reviews, and early delivery of new services.
• Capable of creating reusable standards, templates, patterns, and delivery guidance that help scale successful offerings across teams.
• Excellent analytical skills, strong English fluency, and the ability to adapt quickly as platform capabilities, threats, and client priorities evolve.
• Ongoing training, certification development, and continuous learning are expected as part of the role.
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, Information Technology, or equivalent demonstrable experience.
• 5+ years of professional experience in security architecture, cloud security, identity, or related solution design roles, ideally with strong Microsoft ecosystem depth.
• Experience designing secure target-state architectures, evaluating control gaps, or helping shape and standardize new solution offerings is strongly preferred.
• Hands-on experience supporting pre-sales, architectural advisory work, or early delivery of security engagements is a strong plus.
• Preferred certifications include SC-100, SC-300, SC-401, AZ-500, AI-102, MS-102, or AZ-305.
• Required certifications, if not held at hire, should be completed within 12 months: SC-300 SC-100 AZ-500 or AI-102

Nice To Haves

• Familiarity with NIST AI RMF, MITRE ATLAS, OWASP Top 10 for LLM Applications, Entra Identity Governance, Privileged Identity Management, GitHub Actions, Azure DevOps, or adjacent AI and agent ecosystems.

Responsibilities

• Identify whitespace in emerging technologies, especially AI, agent-based platforms, and adjacent Microsoft capabilities, where ProArch can create new security offerings or differentiate existing services.
• Research new platforms and capabilities to determine where clients are struggling, what risks or governance gaps exist, and which use cases have real market value.
• Assess client business requirements, security objectives, and technical constraints to design secure target-state architectures across Microsoft cloud, identity, data, and AI-related platforms.
• Define architectural patterns, trust boundaries, control points, and integration approaches that align security, governance, and operational needs.
• Produce architecture diagrams, reference designs, decision frameworks, and solution blueprints that can be used in both pre-sales and delivery.
• Validate proposed architectures through hands-on testing, design reviews, proof-of-concept work, and early implementation support to confirm feasibility and risk posture.
• Define secure configuration baselines, governance guardrails, identity models, and monitoring expectations for proposed solutions before they are broadly adopted.
• Evaluate architecture decisions for identity, access, data protection, compliance, resilience, and operational risk, and translate findings into clear technical recommendations.
• Create reusable standards, hardening patterns, reference architectures, and implementation guidance that help delivery teams execute consistently.
• Continuously refine architectural standards and recommended patterns based on delivery feedback, technical validation, and evolving platform capabilities.
• Support pre-sales activities by leading or contributing to discovery sessions, architecture workshops, solution framing, proposal input, and technical risk discussions.
• Provide architectural advisory guidance to clients and internal teams to ensure proposed solutions are secure, practical, and aligned to business outcomes.
• Guide early delivery efforts by supporting architecture reviews, control design, implementation decisions, and secure adoption planning for new or evolving services.
• Produce client-ready architecture artifacts, design rationales, standards documentation, and internal guidance that can be reused across sales and delivery motions.
• Present architectural recommendations and security considerations to leadership, client stakeholders, and delivery teams, and feed lessons learned back into solution improvements.