Our client is a leading financial services organization undergoing significant digital transformation initiatives across cloud, data, AI, and enterprise technology platforms. As part of its continued investment in cybersecurity, the organization is seeking an experienced Enterprise Security Architect to drive the development, governance, and enhancement of enterprise-wide security architecture frameworks that protect critical business systems, customer data, and digital assets.
This is a strategic role that will work closely with technology, infrastructure, cloud, data, risk, and business stakeholders to ensure security is embedded into the organization's technology ecosystem and future-state architecture.
Key Responsibilities- Define, maintain, and evolve the organization's enterprise security architecture strategy, standards, and roadmap.
- Establish security architecture principles, frameworks, and governance processes aligned with business objectives and regulatory requirements.
- Lead security architecture reviews for enterprise technology initiatives, digital transformation programs, cloud migrations, and application modernization projects.
- Provide architectural guidance across infrastructure, networks, cloud platforms, applications, data platforms, and emerging technologies.
- Ensure security-by-design principles are incorporated throughout the technology lifecycle.
- Collaborate with enterprise architects, solution architects, engineering teams, and risk stakeholders to drive secure technology adoption.
- Assess current-state security capabilities and identify gaps, risks, and opportunities for improvement.
- Develop target-state security architectures and reference models for enterprise-wide implementation.
- Evaluate new technologies and recommend security controls to mitigate evolving cyber threats.
- Support regulatory, audit, and compliance requirements within a highly regulated environment.
- Drive security architecture governance through design reviews, risk assessments, and technology standards enforcement.
- Provide strategic guidance on identity and access management, cloud security, network security, application security, data protection, and security monitoring capabilities.
- Mentor and provide technical leadership to security architects, engineers, and technology teams.
- 10+ years of experience in cybersecurity, information security, enterprise architecture, or security architecture roles.
- Proven experience designing and implementing enterprise-scale security architecture frameworks within complex environments.
- Strong understanding of security architecture domains, including:
- Cloud Security
- Network Security
- Application Security
- Identity & Access Management (IAM)
- Data Protection & Encryption
- Security Operations & Monitoring
- Zero Trust Architecture
- DevSecOps
- Experience working within highly regulated industries such as financial services, banking, insurance, telecommunications, or large enterprise environments.
- Strong knowledge of security frameworks and standards such as:
- NIST
- ISO 27001
- CIS Controls
- SABSA
- TOGAF
- COBIT
- Experience engaging with executive stakeholders and influencing technology strategy at an enterprise level.
- Excellent communication and stakeholder management skills.
- Experience developing or governing AI Security Architecture frameworks.
- Knowledge of Generative AI security, AI governance, model risk management, and responsible AI controls.
- Experience designing security controls for enterprise data platforms, analytics environments, data lakes, and AI/ML ecosystems.
- Exposure to data security technologies including data classification, DLP, data governance, privacy controls, and encryption strategies.
- Experience securing hybrid-cloud and multi-cloud environments.
- Relevant certifications such as CISSP, CCSP, SABSA, TOGAF, CISM, or equivalent.
