Security Architect

Expertise:

8–15 years of professional experience in Information Security, with at least 4+ years in a Security Architect or similar role.

Key Responsibilities:

• Design, implement, and maintain enterprise security architectures aligned with industry standards (e.g., NIST, ISO 27001, CIS).
• Define and drive security architecture principles for infrastructure, applications, and cloud environments (Azure / AWS).
• Collaborate with IT, DevOps, and product teams to embed security controls within the software development lifecycle (DevSecOps).
• Conduct security assessments, threat modeling, and risk analysis for new and existing systems.

Required Skills

• Strong knowledge of cloud security (Azure, AWS, or GCP) and cloud-native security services.
• Deep understanding of network and infrastructure security, including firewalls, proxies, IDS/IPS, and VPNs.
• Expertise in Identity and Access Management (IAM), Zero Trust architecture, and Privileged Access Management (PAM).
• Experience with SIEM, SOAR, and endpoint security tools (e.g., Splunk, Sentinel, CrowdStrike).
• Familiarity with DevSecOps practices and security automation tools (e.g., Checkov, Prisma Cloud, Aqua, or Twistlock).
• Strong grasp of cryptography, PKI, and key management systems.
• Knowledge of compliance frameworks – ISO 27001, NIST, GDPR, PCI DSS, etc.