Enterprise Security Architect

Define enterprise security architecture standards, create security patterns and frameworks, establish security controls by tier, and provide the security templates that enable secure-by-design solutions. This role creates security patterns and standards, not operational security implementation.

What Makes This Role Unique

· Policy translator: Convert InfoSec policies into practical architectural patterns solution architects can apply

· Security-by-tier architect: Define exactly what security controls are required for each application tier (Tier 0/1/2/3)

· Zero-trust strategist: Lead the enterprise adoption of zero-trust architecture through patterns and templates

· Strategic partnership: Bridge between architecture and operational security (InfoSec team)

Key Responsibilities

Enterprise Security Standards & Patterns (40%)

· Define security architecture reference architectures (zero-trust, defense-in-depth)

· Create security patterns library (authentication and authorization patterns, API security patterns, data protection patterns, network security patterns, application security patterns)

· Establish security controls by application tier (Tier 0: HSM, 24/7 SOC, multi-region DR; Tier 1: MFA, encryption at rest/transit, WAF; Tier 2/3: standard security controls)

· Define identity and access management (IAM) patterns

· Document encryption and key management standards

· Create secrets management patterns

Security Frameworks (30%)

· Build secure design templates for common patterns (web apps, APIs, microservices)

· Develop threat modeling framework (STRIDE, PASTA templates)

· Create security testing framework (SAST, DAST, penetration testing standards)

· Establish DevSecOps patterns and shift-left security standards

· Define security compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA patterns)

Security Architecture Governance (20%)

· Review solution architectures for security pattern compliance

· Conduct threat modeling for strategic initiatives

· Define security architecture review criteria

· Translate InfoSec policies into architectural patterns

· Establish security exception process

Enablement (10%)

· Train solution architects on security patterns

· Conduct secure design workshops

· Maintain security pattern catalog

Do you have experience in SOC 2?, Do you have a Bachelor's degree?, · Bachelor's degree in Computer Science, Information Security, or related field

Experience:

· 7+ years in security architecture, enterprise architecture, or cybersecurity

· 5+ years creating enterprise security standards and patterns

· Proven experience with zero-trust architecture and secure design patterns

· Experience establishing security controls frameworks and compliance patterns

· Track record conducting threat modeling and security architecture reviews

Certifications (Required/Preferred):

· CISSP (Certified Information Systems Security Professional) - required

· TOGAF certification - preferred

· SABSA certification - preferred

· Cloud security certification (AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer) - preferred

· CISM or CISA - preferred, · Experience in highly regulated industries (healthcare, finance, government)

· Background in penetration testing or offensive security

· Experience implementing zero-trust at enterprise scale

· Deep knowledge of compliance frameworks and audit processes, · Zero-trust implementation patterns

· IAM patterns and templates

· Threat modeling framework

· DevSecOps standards

· Security review criteria

Up to $90 an hour - Contract