Enterprise Security Architect

Enterprise Security Architect

Position Overview

Job Title: Enterprise Security Architect
Level: Senior/Principal
Department: Enterprise Architecture
Reports To: Director, Enterprise Architecture

Role Purpose

Define enterprise security architecture standards, create security patterns and frameworks, establish security controls by tier, and provide the security templates that enable secure-by-design solutions. This role creates security patterns and standards, not operational security implementation.

What Makes This Role Unique

· Policy translator: Convert InfoSec policies into practical architectural patterns solution architects can apply

· Security-by-tier architect: Define exactly what security controls are required for each application tier (Tier 0/1/2/3)

· Zero-trust strategist: Lead the enterprise adoption of zero-trust architecture through patterns and templates

· Strategic partnership: Bridge between architecture and operational security (InfoSec team)

Key Responsibilities

Enterprise Security Standards & Patterns (40%)

· Define security architecture reference architectures (zero-trust, defense-in-depth)

· Create security patterns library (authentication and authorization patterns, API security patterns, data protection patterns, network security patterns, application security patterns)

· Establish security controls by application tier (Tier 0: HSM, 24/7 SOC, multi-region DR; Tier 1: MFA, encryption at rest/transit, WAF; Tier 2/3: standard security controls)

· Define identity and access management (IAM) patterns

· Document encryption and key management standards

· Create secrets management patterns

Security Frameworks (30%)

· Build secure design templates for common patterns (web apps, APIs, microservices)

· Develop threat modeling framework (STRIDE, PASTA templates)

· Create security testing framework (SAST, DAST, penetration testing standards)

· Establish DevSecOps patterns and shift-left security standards

· Define security compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA patterns)

Security Architecture Governance (20%)

· Review solution architectures for security pattern compliance

· Conduct threat modeling for strategic initiatives

· Define security architecture review criteria

· Translate InfoSec policies into architectural patterns

· Establish security exception process

Enablement (10%)

· Train solution architects on security patterns

· Conduct secure design workshops

· Maintain security pattern catalog

· Partner with InfoSec on security requirements

Required Qualifications

Education:

· Bachelor's degree in Computer Science, Information Security, or related field

Experience:

· 7+ years in security architecture, enterprise architecture, or cybersecurity

· 5+ years creating enterprise security standards and patterns

· Proven experience with zero-trust architecture and secure design patterns

· Experience establishing security controls frameworks and compliance patterns

· Track record conducting threat modeling and security architecture reviews

Certifications (Required/Preferred):

· CISSP (Certified Information Systems Security Professional) - required

· TOGAF certification - preferred

· SABSA certification - preferred

· Cloud security certification (AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer) - preferred

· CISM or CISA - preferred

Required Technical Skills

Skill Category

Required Skills

Proficiency Level

Security Patterns

Security pattern library creation

Expert

Security Patterns

Security controls by tier

Expert

Security Patterns

Zero-trust patterns

Expert

Security Frameworks

Threat modeling frameworks (STRIDE, PASTA)

Expert

Security Frameworks

Security testing frameworks (SAST, DAST)

Advanced

Security Frameworks

DevSecOps patterns

Advanced

Policy Translation

InfoSec policy to pattern translation

Expert

Policy Translation

Compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA)

Advanced

Security Architecture

IAM patterns and implementation

Expert

Security Architecture

Encryption and key management

Advanced

Security Architecture

API security patterns

Advanced

Platform Knowledge

Cloud security (AWS, Azure, GCP)

Advanced

Preferred Qualifications

· Experience in highly regulated industries (healthcare, finance, government)

· Background in penetration testing or offensive security

· Experience implementing zero-trust at enterprise scale

· Deep knowledge of compliance frameworks and audit processes

Success Metrics (First 12 Months)

· Security pattern adoption rate 80%+ for new solutions

· 100% of strategic initiatives complete threat modeling

· Security controls by tier framework established with 90%+ compliance

· Publish 10+ security patterns in catalog

· Conduct 50+ architecture security reviews

· Reduce security incident rate by 30% for pattern-compliant solutions

What You'll Deliver

· Security architecture reference architectures

· Security pattern library

· Security controls by application tier

· Zero-trust implementation patterns

· IAM patterns and templates

· Threat modeling framework

· DevSecOps standards

· Security review criteria

Working Relationships

Key Partnerships:

· InfoSec team (operational security, policy translation)

· Solution architects (apply security patterns)

· Cloud & Platform Architect (security controls by tier alignment)

· Compliance and audit teams

Governance Participation:

· Architecture Review Board (bi-weekly)

· Security Architecture Review (weekly - you lead this)

· Pattern Review Sessions (bi-weekly)

Company Culture & Values

Our Enterprise Architecture team operates on principles of collaboration, excellence, and innovation:

· Pattern-first mindset: We create reusable blueprints that enable consistency and quality

· Partnership model: We work alongside operational teams (App Dev, Data Platform, Infrastructure, InfoSec) as strategic partners

· Continuous improvement: Patterns evolve based on feedback from implementation

· Enablement focus: Success means solution architects effectively apply our patterns

· Executive backing: Strong leadership support for architecture governance and standards

Pay: Up to $90.00 per hour

Work Location: In person