Enterprise Cyber Security Solution Architect
Role details
Job location
Tech stack
Job description
We are seeking an experienced Enterprise Cyber Security Solution Architect to lead the design, evolution, and governance of enterprise-wide cybersecurity solutions that protect critical business systems, infrastructure, and information assets.
This role serves as a senior cybersecurity architecture leader responsible for defining future-state security architectures, establishing standards, developing multi-year roadmaps, and partnering with internal teams, system integrators, and managed security providers to ensure successful execution.
The position is highly strategic and architecture-focused. It does not perform day-to-day administration or hands-on operational support.
Key Areas of ResponsibilityIdentity & Access Management (IAM) / Identity Governance (IGA) - 35%
Provide architectural leadership for enterprise identity and access management capabilities, including Microsoft Entra ID and Saviynt.
Responsibilities include:
- Define IAM and IGA architecture standards, roadmaps, and governance models.
- Architect enterprise solutions supporting Zero Trust and least-privilege principles.
- Lead design initiatives involving:
- Passwordless authentication
- Conditional Access
- Single Sign-On (SSO)
- Identity federation
- Mature Saviynt capabilities including:
- Role-based access control (RBAC)
- Enterprise role management
- Entitlement governance
- Access certification programs
- Design controls addressing BYOD and device trust requirements.
- Lead integrations with CyberArk, ServiceNow, SAP, and other enterprise platforms.
- Govern non-human and workload identities across the organization.
Privileged Access Management (PAM) - 25%
Serve as the enterprise architecture authority for CyberArk and privileged access strategies.
Responsibilities include:
- Define and execute the enterprise PAM roadmap.
- Support enterprise deployments and transition strategies to managed service operations.
- Architect advanced CyberArk capabilities including:
- Privileged session recording
- Secure Credential Access (SCA)
- Secure Web Access (SWA)
- Just-In-Time (JIT) access
- Privilege reduction initiatives
- Establish PAM standards across:
- On-premises environments
- Cloud platforms
- Hybrid infrastructure
- Operational Technology (OT) environments
- Provide governance and oversight to implementation partners and system integrators.
Data Loss Prevention (DLP) - 15%
Lead the architecture and strategy for enterprise DLP initiatives.
Responsibilities include:
- Define data classification, labeling, and protection architectures.
- Architect DLP solutions leveraging Microsoft Purview and related technologies.
- Align DLP controls with identity, access management, and governance requirements.
- Partner with Legal, Compliance, Risk, and Privacy stakeholders to ensure regulatory alignment., * Establish secure application architecture standards and patterns.
- Support integration of security controls into the Software Development Lifecycle (SDLC).
- Guide teams on:
- Authentication and authorization design
- Secure coding principles
- Secure data handling practices
- Conduct architecture reviews and risk assessments for critical applications.
PKI & Certificate Management - 5%
- Define enterprise PKI standards and governance.
- Lead certificate lifecycle management strategies.
- Support certificate-based authentication and passwordless initiatives.
Cyber Defense & Security Governance - 5%
- Contribute to enterprise security architecture standards and control frameworks.
- Support threat detection and response alignment initiatives.
- Participate in security architecture reviews and enterprise risk discussions.
- Act as a trusted advisor to technology and business leadership.
Requirements
Do you have experience in Zero Trust security?, Do you have a Bachelor's degree?, * Bachelor's Degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related discipline.
- Equivalent combination of education and experience will be considered.
Experience
- 8+ years of cybersecurity or IT experience.
- Strong enterprise architecture background.
- Demonstrated expertise across:
- IAM / IGA
- PAM
- DLP
- Application Security
- PKI
- Experience designing and governing enterprise-scale security solutions.
Technical Knowledge
Strong understanding of:
- Zero Trust architecture
- Identity and Access Management
- Microsoft Entra ID
- Saviynt
- CyberArk
- Microsoft Purview
- Application Security and Secure SDLC
- PKI and certificate management
- Enterprise architecture frameworks
- Security control frameworks (NIST, ISO 27001, etc.)
- Risk management and security governance
- Cloud and hybrid security architectures
CertificationsRequired
Two recognized cybersecurity certifications (or ability to obtain within one year of hire) from organizations such as:
- ISC2
- ISACA
- GIAC
- CompTIA
- EC-Council
Preferred
- CISSP
- CISM
- CISA
- CRISC
- OSCP
- SSCP
- GIAC certifications
- ITIL
Leadership Competencies
Successful candidates will demonstrate:
- Strategic cybersecurity vision
- Strong architecture and design expertise
- Executive-level communication skills
- Cross-functional leadership and influence
- Documentation and governance excellence
- Critical thinking and problem-solving abilities
- Ability to balance business objectives with security requirements
Benefits & conditions
3.63.6 out of 5 stars Lutz, FL 33549 Hybrid work $65 - $67 an hour - Full-time, Contract, Pulled from the full job description
- Health insurance
- Vision insurance
- Dental insurance
- Life insurance, Compensation: Target base hourly rate will be $65-$67/hr plus comprehensive medical benefits package.
Important Considerations
- Must be able to work on W2 upon initiation of employment.
- No Corp-to-Corp.
- Candidates with international education credentials must provide credential evaluation documentation at the time of submission.
- Candidates must be able to satisfy all pre-employment screening requirements.
- This position follows the company's substance screening policies, including compliance with all applicable drug-testing requirements., * Hybrid schedule: 4 days onsite in Lutz, FL and 1 day remote.
- Occasional after-hours, weekend, or on-call support may be required based on project or business needs.
This is an excellent opportunity for a senior cybersecurity architect who enjoys driving enterprise security strategy, influencing large-scale technology decisions, and building modern security capabilities across a complex enterprise environment.
Pay: $65.00 - $67.00 per hour
Benefits:
- Dental insurance
- Health insurance
- Life insurance
- Vision insurance