Enterprise Security Architect

Key Responsibilities

Security Architecture & Strategy

• Define and maintain enterprise security architecture aligned with business and risk objectives.
• Develop security roadmaps across cloud, on-premises, and OT environments.
• Establish architecture standards, frameworks, and reusable security patterns.
• Define baseline security controls for operating systems, networks, IAM, encryption, and data protection.

Architecture Assurance & Risk Management

• Conduct architecture reviews, threat modeling, and risk assessments.
• Validate security posture across infrastructure, applications, and network controls.
• Ensure secure design practices across projects, DevOps pipelines, and cloud deployments.
• Drive compliance with internal policies, regulatory requirements, and security standards.

AI Security & AI Infrastructure

• Understand AI/ML security risks, including model poisoning, adversarial attacks, data leakage, and model integrity threats.
• Secure AI/ML pipelines covering data ingestion, model training, validation, and deployment.
• Apply AI governance, responsible AI practices, and regulatory compliance considerations.
• Secure AI infrastructure, including GPU-based workloads, MLOps platforms, APIs, and model access controls.
• Integrate AI security into broader enterprise security architecture and Zero Trust frameworks.

Governance & Stakeholder Management

• Participate in governance forums such as CAB, architecture boards, and technology councils.
• Collaborate with CISO, IT, DevOps, Risk, Audit, and Business teams.
• Support vendor risk assessments and review third-party security controls.
• Act as a key liaison between enterprise architecture, security operations, and engineering teams.

Security Engineering & Enablement

• Guide implementation of security technologies such as EDR, SIEM, WAF, IAM, NAC, and DLP.
• Enable secure adoption of Zero Trust, cloud security, and modern enterprise architectures.
• Define secure coding practices and support DevSecOps adoption.
• Stay updated on emerging threats, tools, and industry best practices.

Key Outcomes / Deliverables

• Enterprise security architecture framework and strategic roadmap.
• Improved enterprise security posture and reduced risk exposure.
• Secure onboarding of applications, infrastructure, and cloud services.
• Enhanced compliance readiness and audit preparedness.

Required Experience & Expertise

• 15–18 years of experience in Cyber Security, with strong expertise in security architecture within enterprise environments.
• Bachelor's or Master's degree in Cybersecurity, Information Technology, or a related field.
• Preferred certifications: CISSP, CISA; additional certifications such as CEH or OSCP are advantageous.
• Proven expertise in:
• Security strategy development and roadmap planning
• Stakeholder management and executive communication
• Financial analysis including TCO, ROI, and vendor evaluation
• Project and program management
• Deep knowledge of:
• Enterprise security technologies: Firewalls, IPS, WAF, SIEM, EDR, DLP, NAC
• Cloud and Zero Trust architectures: Azure, AWS, Zscaler
• Identity and Access Management: Active Directory, LDAP, Azure AD, ITDR
• Threat modeling and vulnerability management
• Strong understanding of IT infrastructure, including:
• Networks
• Operating systems
• Databases
• Virtualization
• Containers
• Exposure to OT/IoT security solutions such as Claroty, Nozomi, and SCADAFence is preferred.