RQ08915 - Technology Architect - Senior

Description:

As a Senior Security Architect in our security architecture practice you will co-develop digital enterprise solutions alongside application platform product and operations teams embedding cyber security by design principles from the outset. You ll lead client-facing consultative engagements perform end-to-end security assessments architecture and create repeatable architecture patterns and guidelines that ensure compliance with internal standards and industry best practices.

Key Responsibilities:

• Partner with business product and engineering stakeholders to define security requirements and translate them into architecture designs.
  
• Conduct threat modeling risk assessments and security analyses at inception design and implementation phases.
  
• Develop and maintain reusable secure-by-design patterns for cloud (IaaS/PaaS) SaaS and hybrid deployments.
  
• Architect identity and access solutions: SSO MFA PKI least-privilege controls and federated identity.
  
• Design network and infrastructure controls: network segmentation firewalls security groups SASE micro-segmentation.
  
• Specify data-protection mechanisms: encryption key management transparent data encryption tokenization and database activity monitoring.
  
• Integrate security telemetry logs events and alerts into SIEM (Splunk Cloud Azure Sentinel) and SOAR workflows.
  
• Embed security requirements into DevSecOps pipelines using IaC tools and CI/CD integrations.
  
• Facilitate architecture review boards governance gates and security design workshops.
  
• Mentor and guide junior architects and engineers on secure architecture principles and patterns.
  

General Skills:

• Demonstrated leadership in technical security architecture and solution delivery
  
• Deep expertise with at least two major public cloud platforms (AWS Azure GCP) and SaaS ecosystems
  
• Strong knowledge of application architecture networking and security operations
  
• Proficiency in structured design methodologies and ITIL processes
  
• Excellent verbal and written communication; skilled at presenting to technical and executive audiences
  
• Collaborative team player with strong interpersonal negotiation and stakeholder-management skills
  
• Solid analytical problem-solving and decision-making abilities
  
• Awareness of emerging security technologies trends and compliance requirements
  

Requirements

Experience and Skill Set Requirements:

Must Haves:

• General Well-Rounded Senior Security Architect who has experience with cloud-based solutions Enterprise solutions Information cloud app and data security.
  
• Conduct threat modeling risk assessments and security analyses at the inception design and implementation phases.
  
• Client Relationship Building skills.
  

Skill Set Requirements:

Core Security Technology Domains:

• Identity & Access Management: SSO MFA PKI OAuth/OIDC SAML RBAC/ABAC
  
• Infrastructure Security: IaaS/PaaS hardening VPC/VNet/VCN and subnet segmentation firewalls Network Security Groups SASE
  
• Data Protection: KMS/Vault Transparent Data Encryption tokenization Data Loss Prevention Database Activity Monitoring
  
• Application Security: Secure SDLC threat modeling (STRIDE DREAD) container and serverless security API gateway WAF
  
• Security Operations Tools: SIEM (Splunk Cloud Azure Sentinel) ingestion correlation searches dashboards; SOAR automation; EDR (Defender Cortex XDR)
  

Agile Project Delivery:

• Hands-on experience with Agile/Scrum: backlog management user-story creation sprint planning stand-ups retrospectives
  
• Embed security requirements and automated tests into CI/CD pipelines
  
• Facilitate cross-functional workshops to align SecOps DevOps and product teams
  

Architecture & Design Expertise:

• Apply frameworks (TOGAF NIST CSF CIS Controls) to digital solution blueprints
  
• Lead requirements gathering conceptual logical and detailed design phases
  
• Develop solution design artifacts: architecture diagrams data-flow models sequence diagrams policy matrices
  
• Provide implementation guidance: infrastructure-as-code templates configuration guidance logging-agent deployments
  
• Chair architecture review boards capture decisions and enforce governance processes
  

Public Sector & Regulatory Awareness:

• Prior public-sector or regulated-industry experience is an asset
  
• Familiar with mandates and standards (FIPPA PHIPA PCI DSS AODA ISO 27001)
  
• Embed audit trails data-retention policies and compliance controls into design deliverables