Position Objective:
We are looking for a seasoned security engineering and architecture leader to drive the design and implementation of security capabilities across cloud, network, infrastructure and Microsoft security platforms. The role will provide hands-on technical leadership, define secure reference architecture and engineering standards, and partner with technology teams to deliver pragmatic, risk-based solutions. The candidate should be able to translate security strategy into executable roadmap and oversee delivery through a team of engineers while communicating clearly with senior stakeholders.
Roles and Responsibilities:
- Lead security engineering and architecture for key initiatives across cloud, network and enterprise platforms, ensuring solutions are secure-by-design and aligned to business outcomes.
- Define and maintain security reference architectures, patterns and engineering standards.
- Provide hands-on technical leadership on Microsoft security capabilities, including Entra ID, Conditional Access, Microsoft Defender (Endpoint/Identity/Cloud Apps/Cloud) and Purview.
- Drive cloud security engineering for Azure and/or other cloud providers, including landing zone guardrails, workload protection, and container/Kubernetes security.
- Lead network security design and assurance, including firewall and proxy architecture, network segmentation, zero trust access, and secure connectivity patterns.
- Oversee security engineering delivery: backlog prioritization, technical design reviews, quality gates, documentation, and operational handover to run teams.
- Provide security advisory and threat modeling for complex initiatives; provide pragmatic mitigation options and influence design decisions.
- Partner with enterprise architecture, infrastructure, application, and cloud platform teams to embed security controls and automation at scale.
- Provide executive-ready communication on architecture decisions, risks, trade-offs, and delivery status to senior stakeholders.
- People leadership: coach, develop and performance-manage a team of 5 security & automation engineers, building a strong engineering culture and succession pipeline.
Minimum Job Requirements:
- Degree in Computer Science, Information Security, Engineering or related discipline.
- 10+ years of experience in cybersecurity, with significant hands-on experience in security engineering and security architecture for large-scale enterprise environments.
- Deep technical expertise in cloud security (Azure and/or other cloud providers), including identity and access management, network security, workload protection, encryption, and logging/monitoring.
- Strong network security knowledge (segmentation, firewall/proxy design, secure remote access/zero trust, DNS, TLS, and security controls for hybrid connectivity).
- Strong experience with Microsoft security technologies (e.g., Entra ID, Defender suite, Purview) and the ability to design and implement solutions end-to-end.
- Proven ability to produce and govern architecture artifacts (reference architectures, standards, design patterns) and to lead technical design reviews.
- Experience leading engineering project end-to-end (roadmaps, RFP, POC, product evaluation, business case, pilot and testing) and driving adoption through stakeholder management across technology and business functions.
- People leadership experience with a track record of coaching and developing engineers; experience leading a team of 5 is preferred.
- Relevant certifications are preferred (e.g., CISSP, CCSP, Azure Security Engineer, or equivalent).
