Senior Security Enterprise Architect

Associate Director

We are seeking a senior level Security Enterprise Architect to join our team with key responsibilities to define the enterprise-level security architecture, deliver integrated and resilient security solutions across critical domains including Identity and Access Management (IAM), network security, infrastructure, endpoint protection, security monitoring, and our zero-trust strategy. Provide the technical expertise needed to shape the future of our security posture while ensuring alignment with our Cyber Security goals.

Key Responsibilities

• Develop and maintain the comprehensive enterprise security solutions strategy and architectural roadmap. Translate strategic initiatives into actionable, modern, and scalable security designs that protect our digital assets while enabling business innovation. 

• Serve as a key architect for integrated security solutions, ensuring seamless interoperability between different security domains.

• Lead the architectural design and strategy for modernizing our Identity and Access Management (IAM) landscape towards modernizing the IAM footprint. Drive the initiative for a unified authentication system, leveraging technologies such as Microsoft Entra ID and SailPoint to enhance user experience and strengthen access controls.

• Provide support to define the security architecture for hardening our multi-cloud environments in Microsoft Azure and Google Cloud Platform (GCP) and standardization of patterns. Develop cloud security standards, patterns, and best practices to ensure the secure configuration and operation of our cloud workloads and services.

• Provide architecture in modernizing our Public Key Infrastructure (PKI) and certificate management processes. Architect and guide the implementation of a centralized and automated certificate lifecycle management solution using DigiCert.

• Architect and strengthen our endpoint security posture by integrating and optimizing advanced protection platforms like CrowdStrike and Microsoft Defender.

• Support and provide architectural guidance for the Network Access Control (NAC) refresh initiative to enforce zero trust principles at the network edge.

Qualifications

• 10+ years of experience in enterprise cybersecurity, with at least 5 years in a security architect role.  

• Proven experience developing enterprise-wide security strategies and roadmaps.  

• Hands-on experience in architecting and implementing security solutions in a large, complex enterprise environment.

• Deep expertise in Identity and Access Management (IAM), including recent experience with MS Entra ID and SailPoint.

• Strong architectural knowledge of Cloud Security principles for Azure and GCP, including infrastructure-as-code and container security.

• Demonstrated experience with PKI / Certificate Management and tools like DigiCert.

• In-depth knowledge of Endpoint Security solutions (CrowdStrike, Defender) and Network Access Control (NAC).

• Comprehensive understanding of Zero Trust Architecture principles and their practical application. Familiarity with modern network and infrastructure security controls.

• Excellent communication skills, capable of explaining highly complex security concepts to diverse audiences, from engineers to executive leaders.

• Relevant certifications such as CISSP, CISM, CCSP, or TOGAF and other architect-level certifications are highly desirable.

   

Experience Level

Mid Level