Responsibilities:
- Develop and lead the implementation of the organization's cybersecurity architecture and strategies.
- Collaborate with IT teams to design and integrate security measures into the overall IT architecture.
- Define security requirements for systems, networks, applications, and data, ensuring adherence to industry standards and regulations.
- Create architectural blueprints and documentation for secure systems, including network diagrams, data flow diagrams, and security controls.
- Evaluate and select appropriate security technologies, tools, and solutions to address cybersecurity risks and threats.
- Design and implement security controls for identity and access management, encryption, data protection, and threat detection and response.
- Conduct security reviews and risk assessments of technology projects and systems, providing recommendations for improvements.
- Develop and oversee cybersecurity policies, procedures, and guidelines, ensuring alignment with industry standards and best practices.
- Provide technical expertise and guidance to development teams, assisting in the implementation of security controls.
- Stay current with emerging cybersecurity threats, attack techniques, and defensive strategies.
- Lead security architecture reviews and provide recommendations for improvements.
- Collaborate with compliance teams to ensure adherence to regulatory requirements and standards (e.g., GDPR, HIPAA).
- Participate in incident response activities and provide expertise in handling security incidents.
- Mentor and train junior members of the cybersecurity team.
Requirements:
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent practical experience).
- Proven experience as a Cybersecurity Architect, Security Consultant, or similar role, with a track record of designing and implementing secure systems.
- In-depth knowledge of cybersecurity principles, frameworks, and standards (e.g., NIST, ISO 27001).
- Strong understanding of network security, encryption technologies, and identity and access management (IAM) concepts.
- Experience with cloud security architecture, including designing security controls for cloud environments.
- Knowledge of security technologies such as firewalls, intrusion detection/prevention systems, SIEM, and endpoint security solutions.
- Ability to analyze complex security issues and develop practical solutions.
- Excellent communication skills to convey technical concepts to non-technical stakeholders.
- Relevant cybersecurity certifications (e.g., CISSP, Certified Cloud Security Professional) are a plus.
- Experience with threat modeling and risk assessment methodologies is advantageous.
- Familiarity with legal and regulatory requirements related to data protection and privacy.
- Strong leadership and team collaboration skills.
