Cyber Security Architect

About the Company

As a Security Architect, you will play a key role in designing, securing, and advancing our enterprise security posture across cloud infrastructure, application development, and DevSecOps pipelines.

Responsibilities

Security Architecture & Engineering

Define and maintain security architecture blueprints for cloud (AWS, Azure) and hybrid environments

Provide strategic guidance for securing application code, APIs, container stacks, and CI / CD pipelines

Lead threat modeling, architecture analysis, and design reviews for new and existing systems

Create and update security reference architectures aligned to NIST, CIS, and industry best practices

Cloud and Infrastructure Security

Define guardrails for cloud infrastructure (IaaS, PaaS) security

Design controls including network segmentation, encryption, IAM / rBAC, and workload protection

Partner with Platform Engineering to implement infrastructure-as-code security (e.g., Terraform review, IaC scanning)

Application Security & DevSecOps

Integrate security controls into the secure SDLC, including SAST, SCA, IaC scans, and container scanning (e.g., Snyk)

Partner with Product Engineering and DevOps to implement CI / CD gating policies based on vulnerability severity

Guide secure coding practices and train development teams on OWASP Top 10 and secure design patterns

Support the adoption of risk-based vulnerability prioritization

Vulnerability Management & Risk Governance

Contribute to enterprise vulnerability management strategy

Analyze risks from CVEs in cloud, app, and infrastructure layers

Recommend remediation and compensating controls when SLA compliance cannot be met

Collaborate with operations and compliance teams to prepare for audits (SOC 2, ISO 27001, HIPAA)