Security Architect

The Security Architect designs and implements secure architectures across cloud environments (with a strong focus on AWS), applications, identity systems, and enterprise infrastructure. They integrate security into DevSecOps pipelines, ensuring secure coding practices, automated scanning, and continuous validation throughout the software lifecycle. The role conducts threat modeling, architecture reviews, and risk assessments to ensure systems align with regulatory requirements and organizational security standards. Additionally, the Security Architect enhances detection, response, and overall security posture by improving technical controls, hardening configurations, and driving secure design principles across teams.

Key Responsibilities:

• Bachelor’s or Associate degree in Computer Science, Cybersecurity, Information Technology, or equivalent experience
• 5+ years of experience in information security architecture, engineering, or IT risk management
• Strong working knowledge of enterprise security practices, IT risks, and cyber defense concepts
• Hands-on experience with cloud security architecture (AWS preferred)
• Hands-on experience with network security technologies (firewalls, VPN, segmentation, routing)
• Experience with identity security (SSO, MFA, RBAC, IAM)
• Experience implementing or supporting endpoint security tools (EDR)
• Experience with data protection controls (DLP, encryption)
• Experience with SIEM tools and log management
• Experience with vulnerability management and configuration management
• Experience designing or reviewing secure application and API architectures
• Experience with secure software development practices (code scanning, dependency checks, threat modeling, CI/CD security controls)
• Strong understanding of cryptography, authentication protocols, and encryption standards
• Ability to evaluate business requirements and define appropriate security controls
• Experience performing architecture risk assessments or threat modeling
• Strong communication, analytical, and problem-solving skills
• Ability to work collaboratively with engineering, IT, DevOps, and business stakeholders

Qualifications

Qualifications:

• Professional certifications such as CISSP, CCSP, AWS Security Specialty, GIAC, OSCP, or similar
• Experience with Zero Trust architecture
• Experience with cloud workload protection platforms
• Experience with Kubernetes or container security
• Experience with data classification, tokenization, or privacy controls
• Experience with Infrastructure as Code (Terraform, CloudFormation)
• Experience with security automation and orchestration
• Experience designing secure patterns for microservices or serverless architectures
• Experience in regulated industries or frameworks (PCI DSS, SOC 2, ISO 27001, HIPAA, FFIEC, etc.)
• Experience supporting DevOps or DevSecOps practices
• Experience participating in incident response or forensic investigations
• Experience performing third-party or vendor security architecture reviews
• Experience developing security architecture standards, reference patterns, or playbooks

Compensation and Benefits:

• Base salary: $125,000–$135,000
• Comprehensive health and dental benefits
• Paid Time Off (PTO) Holidays
• 401K with up to 4% employer match
• Performance-based bonuses and incentives