• We are looking for a seasoned Security Architect to lead our application and infrastructure security initiatives. The ideal candidate will have a strong background in secure application development along with expertise in secure infrastructure design. This position requires a strong understanding of various security principles, technologies, and best practices, as well as the ability to communicate effectively with different stakeholders.
Key Responsibilities:
Security Architecture Development:
• Design and review security architectures for our software applications and infrastructure systems
• Develop and maintain security policies, standards, and guidelines for application development and infrastructure deployment
Security Solutions Evaluation and Integration:
• Evaluate new security technologies and products to determine their suitability for the organization.
• Integrate security solutions into the existing infrastructure and ensure compatibility with business processes.
Threat Modeling:
• Conduct threat modeling exercises for new and existing applications and systems
• Provide recommendations for mitigating risks.
Collaboration and Advisory:
• Work closely with IT teams, software developers, and other departments to incorporate security measures into all aspects of technology.
• Advise on the security implications of new technologies or system changes.
Compliance and Standards:
• Ensure that security architectures and implementations comply with relevant regulatory standards and industry best practices.
• Stay updated on the latest regulations affecting cybersecurity.
Reporting and Documentation:
• Maintain comprehensive documentation of security architectures and processes.
• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related field.
• Professional certifications such as CISSP, CISM, CEH, or similar are preferred.
• Minimum of 8 years of experience in information security, with at least 3 years in a security architecture role.
• Strong understanding of security protocols, cryptography, authentication, authorization, and security.
• Good knowledge of current IT risks and experience implementing security solutions.
• Excellent communication skills, both written and verbal
