Description
The Cybersecurity Architect is responsible for designing, implementing, and maintaining secure systems and networks that protect the organization's digital assets from internal and external threats. This role serves as the subject matter expert in cyber architecture, offering strategic and technical leadership in the development and enforcement of enterprise security architecture and controls.
Key Responsibilities:
-Design and develop security architecture for on-premise, cloud, and hybrid environments (e.g., AWS, Azure, GCP).
-Define security policies, standards, and reference architectures in alignment with industry frameworks (e.g., NIST, ISO 27001, CIS).
-Lead threat modeling, risk assessments, and vulnerability analysis during system and application design.
-Collaborate with IT, DevOps, and engineering teams to embed security into infrastructure and development pipelines (DevSecOps).
-Evaluate, recommend, and implement cybersecurity technologies such as firewalls, IDS/IPS, EDR, SIEM, PAM, and DLP solutions.
-Ensure compliance with legal and regulatory requirements such as GDPR, HIPAA, or PCI DSS.
-Provide technical guidance during security incidents and participate in incident response planning and exercises.
-Develop security architecture documentation, blueprints, and roadmaps.
-Stay current with emerging threats, security trends, and evolving technologies.
Required Skills and Qualifications:
-Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.
-Minimum 5+ years in cybersecurity, with at least 2 years in a security architecture role.
-Strong knowledge of network, application, and cloud security principles.
-Experience with security frameworks and risk management practices.
-Proficient in designing secure systems across multiple environments (cloud, on-prem, hybrid).
-Solid understanding of IAM, encryption, PKI, zero trust, and secure coding practices.
-Excellent communication skills and ability to translate complex security concepts for technical and non-technical stakeholders.
Preferred Certifications:
-CISSP (Certified Information Systems Security Professional)
-SABSA / TOGAF
-CISM, CISA, or CRISC
-AWS/Azure/GCP Security Certification
-CEH or OSCP
Key Responsibilities:
-Design and develop security architecture for on-premise, cloud, and hybrid environments (e.g., AWS, Azure, GCP).
-Define security policies, standards, and reference architectures in alignment with industry frameworks (e.g., NIST, ISO 27001, CIS).
-Lead threat modeling, risk assessments, and vulnerability analysis during system and application design.
-Collaborate with IT, DevOps, and engineering teams to embed security into infrastructure and development pipelines (DevSecOps).
-Evaluate, recommend, and implement cybersecurity technologies such as firewalls, IDS/IPS, EDR, SIEM, PAM, and DLP solutions.
-Ensure compliance with legal and regulatory requirements such as GDPR, HIPAA, or PCI DSS.
-Provide technical guidance during security incidents and participate in incident response planning and exercises.
-Develop security architecture documentation, blueprints, and roadmaps.
-Stay current with emerging threats, security trends, and evolving technologies.
Required Skills and Qualifications:
-Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.
-Minimum 5+ years in cybersecurity, with at least 2 years in a security architecture role.
-Strong knowledge of network, application, and cloud security principles.
-Experience with security frameworks and risk management practices.
-Proficient in designing secure systems across multiple environments (cloud, on-prem, hybrid).
-Solid understanding of IAM, encryption, PKI, zero trust, and secure coding practices.
-Excellent communication skills and ability to translate complex security concepts for technical and non-technical stakeholders.
Preferred Certifications:
-CISSP (Certified Information Systems Security Professional)
-SABSA / TOGAF
-CISM, CISA, or CRISC
-AWS/Azure/GCP Security Certification
-CEH or OSCP