Role Description We are looking for a seasoned Cybersecurity Technical Architect to serve as the enterprise design authority for cybersecurity. This is a high-impact leadership role responsible for defining, governing, and continuously evolving the organization's end-to-end security architecture — spanning identities, applications, infrastructure, data, AI systems, and third-party ecosystems. You will combine deep technical expertise with strategic architectural leadership, translating business priorities and emerging threats into scalable, resilient, and compliant security capabilities. Experience: 12–18+ years overall | 6+ years in security architecture Key Responsibilities - Enterprise Security Architecture - Own and continuously evolve the enterprise cybersecurity architecture aligned with NIST CSF, ISO 27001, Zero Trust Architecture (ZTA), and Secure-by-Design principles. - Act as Security Design Authority for major enterprise initiatives, cloud transformations, and AI/digital programs. - Translate business strategy, regulatory requirements, and threat models into reusable security architecture patterns and reference designs. - Asset Management - Define and govern IT and Information Asset Management strategy. - Ensure accurate discovery, classification, and ownership of applications, APIs, infrastructure, data assets, and AI/ML models. - Integrate asset inventory with risk, vulnerability, and incident response functions. - Identity & Access Management (Zero Trust) - Architect and oversee IAM capabilities including identity lifecycle management, PAM, SSO, MFA, and adaptive access controls. - Drive enterprise-wide Zero Trust adoption across users, devices, workloads, services, and APIs. - DevSecOps & Secure Development - Lead the Secure SDLC strategy and define security guardrails for CI/CD pipelines, IaC, APIs, microservices, and cloud-native workloads. - Govern SAST, DAST, SCA, secrets scanning, and container/Kubernetes security tooling. - Endpoint Security - Architect endpoint and workload protection across laptops, mobile, servers, VMs, and cloud workloads. - Govern enterprise standards for EDR/XDR, device compliance, encryption, OS hardening, and baseline configurations. - Security Testing & Assurance - Own the security testing framework including continuous vulnerability scanning, penetration testing, and red/purple team exercises. - Establish remediation tracking and risk acceptance aligned with enterprise risk appetite. - AI Governance & Security - Define and enforce AI security controls covering GenAI/ML model use, data privacy, model integrity, prompt security, and abuse detection. - Assess AI-driven threats including model poisoning, data leakage, and adversarial prompts. - Third-Party Risk Management - Lead cybersecurity architecture for supplier and third-party risk, including due diligence, contractual security clauses, and continuous monitoring. Qualifications - Enterprise security architecture (on-prem, cloud, hybrid) - Identity & Access Management and Zero Trust frameworks - DevSecOps and application security - SIEM, SOAR, EDR/XDR, and vulnerability management - API, data, and cloud security - AI/ML security principles and governance Preferred Qualifications - Bachelor's degree in Computer Science or equivalent - Certifications: CISSP, CISM, SABSA, CCSP, TOGAF - Cloud security certifications (AWS, Azure, GCP) - Experience in regulated industries and global security programs Leadership & Influence - Proven experience leading cross-functional, enterprise-scale security initiatives - Ability to influence senior leaders, architects, and engineering teams - Strong architectural documentation, communication, and decision-making skills