Enterprise Security Architect

Job Description

Company Information

Job Summary
The Enterprise Security Architect (SA) is responsible for designing and implementing secure architectures that align with business objectives and reduce risk, reporting directly to the Chief Information Security Officer (CISO). This role collaborates across functions-including Global Enterprise Services, Infrastructure, Application Development, Legal, Compliance, and Security Operations-to embed security standards into enterprise technology solutions.
Essential Functions
• Secure Architecture Design: Define and maintain enterprise-wide security architecture standards and blueprints across infrastructure, cloud, endpoint, and application layers. Ensure solutions are securely designed and aligned with business goals, regulatory requirements, and the CISO's strategic objectives.
• Solution Reviews and Advisory: Provide expert guidance during solution design and implementation. Lead threat modeling, architecture reviews, and risk assessments as part of technical intake and governance processes.
• Cross-Functional Engagement: Serve as the security subject matter expert within project teams. Partner with Global Enterprise Services, Infrastructure, Application Development, and PMO to ensure secure integration and alignment of technical requirements.
• Security Standards and Frameworks: Develop and maintain reference architectures, secure configuration standards, and solution patterns. Ensure consistency with frameworks such as NIST, PCI-DSS, ISO 27001, and GDPR.
• Cloud and SaaS Security Enablement: Lead secure design of cloud-native and SaaS platforms, including IaaS and PaaS. Collaborate with Cloud Engineering and DevOps to implement secure-by-design deployment practices.
• Innovation and Strategic Foresight: Stay ahead of evolving threats and technology trends. Contribute to the long-term security architecture roadmap by identifying opportunities to improve the organization's security posture.
Required Qualifications
• BA/BS Degree (4-year) Computer Science, Cybersecurity, Engineering, Information Systems, or related field. Master's degree or advanced certifications preferred.
• 10+ years experience in IT and/or cybersecurity, with at least 5 years in a security architecture or engineering role.
• Proven ability to design secure enterprise systems and integrations across on-prem, cloud, and hybrid environments.
• Experience with identity and access management, network segmentation, encryption, logging/monitoring, and secure SDLC.
• Strong understanding of architectural frameworks (SABSA, TOGAF, or similar) and secure design methodologies.
• Experience conducting architecture risk assessments, threat modeling, and security reviews of enterprise systems.
• Expert-level knowledge of security technologies including firewalls, web application firewalls (WAFs), identity and access management (IAM), endpoint protection, cloud-native security controls, and SIEM/SOAR platforms.
• Strong familiarity with modern IT and application architectures, including public cloud platforms (AWS, Azure, GCP), containerization (e.g., Docker, Kubernetes), and DevOps/CI-CD pipelines.
• Proven ability to assess complex technical environments, conduct threat modeling, and deliver actionable risk mitigation strategies.
• Exceptional communication skills, with the ability to clearly articulate technical risks and solutions to both technical and non-technical stakeholders.
• Demonstrated ability to influence and collaborate across Security, IT, Legal, Compliance, and business units in a matrixed environment.
• Proficient in architecture modeling and documentation tools such as Lucidchart, Visio, and Confluence, with an emphasis on clarity and reusability.
• Strategic mindset with a hands-on approach; able to navigate between high-level architectural vision and detailed implementation considerations in fast-paced, evolving environments.
• Relevant certifications such as CISSP, SABSA, CCSP, AWS/Azure Security Certifications, or equivalent highly preferred.
Pay Scale: $164,794 - $224,719

Jobcode: Reference SBJ-z39vx2-216-73-216-1-42 in your application.