Job Description

The Cyber Security Architect will be responsible for designing, implementing, and maintaining the organization's security architecture to protect critical systems, data, and assets. This role requires deep technical expertise, strategic thinking, and the ability to balance security requirements with business objectives. The ideal candidate will serve as a key advisor on security design decisions, ensuring that enterprise systems are resilient, compliant, and secure against emerging threats.

Key Responsibilities

Architecture & Design

Develop and maintain the organization's enterprise security architecture framework, principles, and roadmap.


Design and implement secure network, application, and cloud architectures.


Integrate security requirements into infrastructure, application development, and business processes.


Conduct threat modeling and risk assessments for new and existing systems.

Governance, Risk, and Compliance

Ensure solutions comply with regulatory and industry standards (e.g., ISO 27001, NIST, GDPR, PCI-DSS).


Support audits, assessments, and incident response planning.


Define and maintain security policies, standards, and technical guidelines.

Collaboration & Advisory

Partner with IT, DevOps, and software engineering teams to embed security into design and development processes (DevSecOps).


Advise senior management on emerging threats and recommended mitigation strategies.


Provide mentorship and technical guidance to security engineers and analysts.

Technology Implementation

Evaluate and recommend security tools and technologies (e.g., SIEM, IAM, DLP, endpoint protection, cloud security solutions).


Oversee deployment and configuration of security technologies in collaboration with infrastructure teams.


Support secure cloud adoption across AWS, Azure, and/or GCP environments.

Key Skills & Competencies

Deep understanding of

network security

,

application security

,

identity and access management (IAM)

,

encryption

, and

cloud security architectures

. Proficient in

threat modeling

,

vulnerability management

, and

incident response frameworks

. Strong knowledge of

security frameworks

(e.g., NIST CSF, SABSA, TOGAF, CIS Controls). Experience with

zero trust architectures

,

container security

, and

API security

. Familiarity with

DevSecOps practices

and

automation tools

(CI/CD, IaC). Excellent analytical, problem-solving, and communication skills. Ability to translate complex technical issues into business-relevant recommendations.

Qualifications

Bachelor's degree in Computer Science, Information Technology, Cyber Security, or related field (Master's preferred).

Certifications

(one or more preferred):

CISSP (Certified Information Systems Security Professional)


CISM (Certified Information Security Manager)


CCSP (Certified Cloud Security Professional)


SABSA or TOGAF Certification


CEH / OSCP (for hands-on technical background)

Preferred Experience

7+ years of experience in cyber security, including 3+ years in an architecture or design role. Hands-on experience securing

cloud

,

hybrid

, and

on-premises

environments. Experience working in

regulated industries

(e.g., finance, healthcare, critical infrastructure) a plus. * Demonstrated ability to manage

security projects

and lead

cross-functional teams