Role Overview
We are looking for a seasoned Cybersecurity Technical Architect to serve as the enterprise design authority for cybersecurity. This is a high-impact leadership role responsible for defining, governing, and continuously evolving the organization's end-to-end security architecture — spanning identities, applications, infrastructure, data, AI systems, and third-party ecosystems.
You will combine deep technical expertise with strategic architectural leadership, translating business priorities and emerging threats into scalable, resilient, and compliant security capabilities.
Experience: 12–18+ years overall | 6+ years in security architecture
Key Responsibilities
Enterprise Security Architecture
- Own and continuously evolve the enterprise cybersecurity architecture aligned with NIST CSF, ISO 27001, Zero Trust Architecture (ZTA), and Secure-by-Design principles
- Act as Security Design Authority for major enterprise initiatives, cloud transformations, and AI/digital programs
- Translate business strategy, regulatory requirements, and threat models into reusable security architecture patterns and reference designs
Asset Management
- Define and govern IT and Information Asset Management strategy
- Ensure accurate discovery, classification, and ownership of applications, APIs, infrastructure, data assets, and AI/ML models
- Integrate asset inventory with risk, vulnerability, and incident response functions
Identity & Access Management (Zero Trust)
- Architect and oversee IAM capabilities including identity lifecycle management, PAM, SSO, MFA, and adaptive access controls
- Drive enterprise-wide Zero Trust adoption across users, devices, workloads, services, and APIs
DevSecOps & Secure Development
- Lead the Secure SDLC strategy and define security guardrails for CI/CD pipelines, IaC, APIs, microservices, and cloud-native workloads
- Govern SAST, DAST, SCA, secrets scanning, and container/Kubernetes security tooling
Endpoint Security
- Architect endpoint and workload protection across laptops, mobile, servers, VMs, and cloud workloads
- Govern enterprise standards for EDR/XDR, device compliance, encryption, OS hardening, and baseline configurations
Security Testing & Assurance
- Own the security testing framework including continuous vulnerability scanning, penetration testing, and red/purple team exercises
- Establish remediation tracking and risk acceptance aligned with enterprise risk appetite
AI Governance & Security
- Define and enforce AI security controls covering GenAI/ML model use, data privacy, model integrity, prompt security, and abuse detection
- Assess AI-driven threats including model poisoning, data leakage, and adversarial prompts
Third-Party Risk Management
- Lead cybersecurity architecture for supplier and third-party risk, including due diligence, contractual security clauses, and continuous monitoring
Required Skills
- Enterprise security architecture (on-prem, cloud, hybrid)
- Identity & Access Management and Zero Trust frameworks
- DevSecOps and application security
- SIEM, SOAR, EDR/XDR, and vulnerability management
- API, data, and cloud security
- AI/ML security principles and governance
Preferred Qualifications
- Bachelor's degree in Computer Science or equivalent
- Certifications: CISSP, CISM, SABSA, CCSP, TOGAF
- Cloud security certifications (AWS, Azure, GCP)
- Experience in regulated industries and global security programs
Leadership & Influence
- Proven experience leading cross-functional, enterprise-scale security initiatives
- Ability to influence senior leaders, architects, and engineering teams
- Strong architectural documentation, communication, and decision-making skills
