Enterprise Cyber Security Solution Architect

Strategic Staffing Solutions
Lutz, United States of America
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Shift work
Languages
English
Experience level
Senior
Compensation
$ 139K

Job location

Remote
Lutz, United States of America

Tech stack

User Authentication
Business Systems
Cloud Computing
CompTIA Security+
Computer Security
Information Systems
Information Leak Prevention
Data Security
Enterprise Architecture Framework
Federated Identity Management
Identity and Access Management
Intrusion Detection and Prevention
Public Key Infrastructure
Systems Development Life Cycle
Role-Based Access Control
Azure
Zero Trust Network Access
SAP Applications
Secure Coding
Web Application Security
Single Sign-On
Software Engineering
SSL Certificate Management
Data Classification
Cyberark
Software Security
Information Technology
Operational Systems
SailPoint
Cyber Warfare
ServiceNow

Job description

We are seeking an experienced Enterprise Cyber Security Solution Architect to lead the design, evolution, and governance of enterprise-wide cybersecurity solutions that protect critical business systems, infrastructure, and information assets.

This role serves as a senior cybersecurity architecture leader responsible for defining future-state security architectures, establishing standards, developing multi-year roadmaps, and partnering with internal teams, system integrators, and managed security providers to ensure successful execution.

The position is highly strategic and architecture-focused. It does not perform day-to-day administration or hands-on operational support.

Key Areas of ResponsibilityIdentity & Access Management (IAM) / Identity Governance (IGA) - 35%

Provide architectural leadership for enterprise identity and access management capabilities, including Microsoft Entra ID and Saviynt.

Responsibilities include:

  • Define IAM and IGA architecture standards, roadmaps, and governance models.
  • Architect enterprise solutions supporting Zero Trust and least-privilege principles.
  • Lead design initiatives involving:
  • Passwordless authentication
  • Conditional Access
  • Single Sign-On (SSO)
  • Identity federation
  • Mature Saviynt capabilities including:
  • Role-based access control (RBAC)
  • Enterprise role management
  • Entitlement governance
  • Access certification programs
  • Design controls addressing BYOD and device trust requirements.
  • Lead integrations with CyberArk, ServiceNow, SAP, and other enterprise platforms.
  • Govern non-human and workload identities across the organization.

Privileged Access Management (PAM) - 25%

Serve as the enterprise architecture authority for CyberArk and privileged access strategies.

Responsibilities include:

  • Define and execute the enterprise PAM roadmap.
  • Support enterprise deployments and transition strategies to managed service operations.
  • Architect advanced CyberArk capabilities including:
  • Privileged session recording
  • Secure Credential Access (SCA)
  • Secure Web Access (SWA)
  • Just-In-Time (JIT) access
  • Privilege reduction initiatives
  • Establish PAM standards across:
  • On-premises environments
  • Cloud platforms
  • Hybrid infrastructure
  • Operational Technology (OT) environments
  • Provide governance and oversight to implementation partners and system integrators.

Data Loss Prevention (DLP) - 15%

Lead the architecture and strategy for enterprise DLP initiatives.

Responsibilities include:

  • Define data classification, labeling, and protection architectures.
  • Architect DLP solutions leveraging Microsoft Purview and related technologies.
  • Align DLP controls with identity, access management, and governance requirements.
  • Partner with Legal, Compliance, Risk, and Privacy stakeholders to ensure regulatory alignment., * Establish secure application architecture standards and patterns.
  • Support integration of security controls into the Software Development Lifecycle (SDLC).
  • Guide teams on:
  • Authentication and authorization design
  • Secure coding principles
  • Secure data handling practices
  • Conduct architecture reviews and risk assessments for critical applications.

PKI & Certificate Management - 5%

  • Define enterprise PKI standards and governance.
  • Lead certificate lifecycle management strategies.
  • Support certificate-based authentication and passwordless initiatives.

Cyber Defense & Security Governance - 5%

  • Contribute to enterprise security architecture standards and control frameworks.
  • Support threat detection and response alignment initiatives.
  • Participate in security architecture reviews and enterprise risk discussions.
  • Act as a trusted advisor to technology and business leadership.

Requirements

Do you have experience in Zero Trust security?, Do you have a Bachelor's degree?, * Bachelor's Degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related discipline.

  • Equivalent combination of education and experience will be considered.

Experience

  • 8+ years of cybersecurity or IT experience.
  • Strong enterprise architecture background.
  • Demonstrated expertise across:
  • IAM / IGA
  • PAM
  • DLP
  • Application Security
  • PKI
  • Experience designing and governing enterprise-scale security solutions.

Technical Knowledge

Strong understanding of:

  • Zero Trust architecture
  • Identity and Access Management
  • Microsoft Entra ID
  • Saviynt
  • CyberArk
  • Microsoft Purview
  • Application Security and Secure SDLC
  • PKI and certificate management
  • Enterprise architecture frameworks
  • Security control frameworks (NIST, ISO 27001, etc.)
  • Risk management and security governance
  • Cloud and hybrid security architectures

CertificationsRequired

Two recognized cybersecurity certifications (or ability to obtain within one year of hire) from organizations such as:

  • ISC2
  • ISACA
  • GIAC
  • CompTIA
  • EC-Council

Preferred

  • CISSP
  • CISM
  • CISA
  • CRISC
  • OSCP
  • SSCP
  • GIAC certifications
  • ITIL

Leadership Competencies

Successful candidates will demonstrate:

  • Strategic cybersecurity vision
  • Strong architecture and design expertise
  • Executive-level communication skills
  • Cross-functional leadership and influence
  • Documentation and governance excellence
  • Critical thinking and problem-solving abilities
  • Ability to balance business objectives with security requirements

Benefits & conditions

3.63.6 out of 5 stars Lutz, FL 33549 Hybrid work $65 - $67 an hour - Full-time, Contract, Pulled from the full job description

  • Health insurance
  • Vision insurance
  • Dental insurance
  • Life insurance, Compensation: Target base hourly rate will be $65-$67/hr plus comprehensive medical benefits package.

Important Considerations

  • Must be able to work on W2 upon initiation of employment.
  • No Corp-to-Corp.
  • Candidates with international education credentials must provide credential evaluation documentation at the time of submission.
  • Candidates must be able to satisfy all pre-employment screening requirements.
  • This position follows the company's substance screening policies, including compliance with all applicable drug-testing requirements., * Hybrid schedule: 4 days onsite in Lutz, FL and 1 day remote.
  • Occasional after-hours, weekend, or on-call support may be required based on project or business needs.

This is an excellent opportunity for a senior cybersecurity architect who enjoys driving enterprise security strategy, influencing large-scale technology decisions, and building modern security capabilities across a complex enterprise environment.

Pay: $65.00 - $67.00 per hour

Benefits:

  • Dental insurance
  • Health insurance
  • Life insurance
  • Vision insurance

Apply for this position