Description:
The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture.
Responsibilities
- Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization.
- Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies.
- Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls.
- Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes.
- Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams.
- Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk.
- Stay current on security threats, vulnerabilities, and technologies to enhance the organization’s security posture.
- Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows.
Skills And Qualifications
- 7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security.
- 5+ years of enterprise architecture experience required.
- Ability to create and review diagrams using tools such as Visio or Lucidchart.
- Familiarity with secure architecture patterns, reference architectures, and frameworks.
- Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce.
- Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM.
- Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation.
- Expertise in threat modeling, vulnerability management, and risk assessments.
- Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR.
- Relevant certifications such as CISSP, CCSP, or equivalent.
- Ability to work independently or collaboratively in a team-oriented environment.
- Bachelor’s degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles.