Security Architect
The Security Architect is responsible for designing, implementing, integrating, and optimizing enterprise security tooling across applications, cloud platforms, infrastructure, and DevSecOps environments. This role partners closely with engineering, architecture, platform, and security operations teams to ensure security technologies are effectively deployed, automated, and aligned with enterprise security strategy, operational resilience, and regulatory requirements.
The Security Tooling Architect drives the adoption of scalable security solutions that enhance visibility, threat detection, vulnerability management, identity security, and secure software delivery across the technology ecosystem.
Responsibilities
Design and manage enterprise security tooling architecture across cloud, infrastructure, applications, endpoints, and DevOps environments.
Lead implementation and integration of security platforms such as SIEM, SOAR, EDR/XDR, SAST/DAST, CSPM, CNAPP, WAF, IAM, PAM, and vulnerability management tools.
Embed security tooling into CI/CD pipelines and SDLC processes to enable automated security testing, policy enforcement, and continuous monitoring.
Develop security tooling standards, integration patterns, and automation frameworks to improve operational efficiency and security posture.
Partner with AppSec, Cloud Security, IAM, SOC, Infrastructure, and Engineering teams to evaluate, deploy, and optimize security technologies.
Oversee tooling-related threat modeling, security assessments, configuration reviews, and remediation activities.
Manage security telemetry, logging, and monitoring integrations to support detection engineering and incident response capabilities.
Ensure security tooling configurations align with enterprise security policies, compliance standards, and regulatory requirements.
Track tooling effectiveness through KPIs, metrics, dashboards, and operational reporting for security leadership.
Support vulnerability management programs through tooling automation, orchestration, and remediation workflows.
Participate in incident response activities, root-cause analysis, and post-incident reviews involving security technologies or control failures.
Evaluate emerging security tools, platforms, and automation opportunities to continuously improve enterprise security capabilities.
Provide technical leadership and guidance on security tooling strategy, architecture, and operational best practices.
Required Skills and Qualifications
Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field (or equivalent experience).
8+ years of experience in cybersecurity engineering, security architecture, or security tooling management.
Strong hands-on experience with enterprise security tools and platforms, including SIEM, SOAR, EDR/XDR, IAM, PAM, SAST/DAST, CSPM, CNAPP, and vulnerability management solutions.
Experience integrating security tooling within cloud environments such as AWS, Azure, or GCP.
Strong understanding of DevSecOps, CI/CD security controls, infrastructure-as-code security, and automation frameworks.
Experience with scripting or automation using Python, PowerShell, Bash, Terraform, or similar technologies.
Deep understanding of security logging, telemetry pipelines, detection engineering, and monitoring architectures.
Working knowledge of security frameworks and standards such as NIST, ISO 27001, CIS Controls, OWASP, and MITRE ATT&CK.
Experience with API integrations, orchestration platforms, and security workflow automation.
Strong analytical, troubleshooting, and problem-solving skills.
Ability to balance operational efficiency, security requirements, and business priorities
Preferred Qualifications
Relevant certifications such as CISSP, CISM, CCSP, GIAC, GSEC, GCIA, or Splunk/Cloud security certifications.
Experience working in large-scale enterprise or hybrid cloud environments.
Prior experience supporting SOC, DevSecOps, or Security Engineering functions.
Familiarity with Zero Trust architecture principles and modern security operations practices.
Experience evaluating and selecting enterprise security technologies and vendors.
The Security Architect is responsible for designing, implementing, integrating, and optimizing enterprise security tooling across applications, cloud platforms, infrastructure, and DevSecOps environments. This role partners closely with engineering, architecture, platform, and security operations teams to ensure security technologies are effectively deployed, automated, and aligned with enterprise security strategy, operational resilience, and regulatory requirements.
The Security Tooling Architect drives the adoption of scalable security solutions that enhance visibility, threat detection, vulnerability management, identity security, and secure software delivery across the technology ecosystem.
Responsibilities
Design and manage enterprise security tooling architecture across cloud, infrastructure, applications, endpoints, and DevOps environments.
Lead implementation and integration of security platforms such as SIEM, SOAR, EDR/XDR, SAST/DAST, CSPM, CNAPP, WAF, IAM, PAM, and vulnerability management tools.
Embed security tooling into CI/CD pipelines and SDLC processes to enable automated security testing, policy enforcement, and continuous monitoring.
Develop security tooling standards, integration patterns, and automation frameworks to improve operational efficiency and security posture.
Partner with AppSec, Cloud Security, IAM, SOC, Infrastructure, and Engineering teams to evaluate, deploy, and optimize security technologies.
Oversee tooling-related threat modeling, security assessments, configuration reviews, and remediation activities.
Manage security telemetry, logging, and monitoring integrations to support detection engineering and incident response capabilities.
Ensure security tooling configurations align with enterprise security policies, compliance standards, and regulatory requirements.
Track tooling effectiveness through KPIs, metrics, dashboards, and operational reporting for security leadership.
Support vulnerability management programs through tooling automation, orchestration, and remediation workflows.
Participate in incident response activities, root-cause analysis, and post-incident reviews involving security technologies or control failures.
Evaluate emerging security tools, platforms, and automation opportunities to continuously improve enterprise security capabilities.
Provide technical leadership and guidance on security tooling strategy, architecture, and operational best practices.
Required Skills and Qualifications
Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field (or equivalent experience).
8+ years of experience in cybersecurity engineering, security architecture, or security tooling management.
Strong hands-on experience with enterprise security tools and platforms, including SIEM, SOAR, EDR/XDR, IAM, PAM, SAST/DAST, CSPM, CNAPP, and vulnerability management solutions.
Experience integrating security tooling within cloud environments such as AWS, Azure, or GCP.
Strong understanding of DevSecOps, CI/CD security controls, infrastructure-as-code security, and automation frameworks.
Experience with scripting or automation using Python, PowerShell, Bash, Terraform, or similar technologies.
Deep understanding of security logging, telemetry pipelines, detection engineering, and monitoring architectures.
Working knowledge of security frameworks and standards such as NIST, ISO 27001, CIS Controls, OWASP, and MITRE ATT&CK.
Experience with API integrations, orchestration platforms, and security workflow automation.
Strong analytical, troubleshooting, and problem-solving skills.
Ability to balance operational efficiency, security requirements, and business priorities
Preferred Qualifications
Relevant certifications such as CISSP, CISM, CCSP, GIAC, GSEC, GCIA, or Splunk/Cloud security certifications.
Experience working in large-scale enterprise or hybrid cloud environments.
Prior experience supporting SOC, DevSecOps, or Security Engineering functions.
Familiarity with Zero Trust architecture principles and modern security operations practices.
Experience evaluating and selecting enterprise security technologies and vendors.