Senior Security Architect
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
The Senior Security Architect is responsible for defining, governing, and advancing the organization's cybersecurity architecture to ensure security is embedded across enterprise, cloud, network, and application environments.
Key Skills for This Role
Full Job Posting
Job Summary
The Senior Security Architect is responsible for defining, governing, and advancing the organization's cybersecurity architecture to ensure security is embedded across enterprise, cloud, network, and application environments.
The role provides technical leadership in designing secure solutions, conducting architecture and design reviews, and driving strategic initiatives such as Zero Trust Architecture and network segmentation.
Working closely with Enterprise Architecture, Infrastructure, Cloud, Network, DevOps, Application Development, and Security Operations teams, the Senior Security Architect ensures that security-by-design principles are consistently applied throughout the technology lifecycle and that security risks are identified and mitigated before implementation.
Security Architecture
- Develop and maintain the enterprise cybersecurity architecture strategy, principles, standards, and reference architectures.
- Define security architecture requirements for infrastructure, applications, cloud services, and business solutions.
- Ensure security is integrated into all phases of the solution lifecycle using Security-by-Design principles.
- Develop architecture patterns, technical standards, and security baselines.
- Evaluate emerging technologies and recommend secure architectural approaches.
- Provide technical leadership on enterprise security transformation initiatives.
Secure Design Reviews
- Lead security architecture reviews for infrastructure, cloud, network, and application projects.
- Conduct secure design assessments and identify architectural risks.
- Perform threat modeling and recommend appropriate security controls.
- Review solution designs for compliance with enterprise security standards and regulatory requirements.
- Provide technical recommendations to project teams to address identified security gaps.
- Review and approve security exceptions with appropriate compensating controls.
- Participate in architecture review boards and technical governance committees.
Zero Trust Architecture
- Lead the development and implementation of the organization's Zero Trust Architecture strategy.
- Design identity-centric security models based on continuous verification and least privilege.
- Define Zero Trust principles for users, workloads, devices, applications, and data.
- Collaborate with IAM, Network, Endpoint, and Cloud teams to implement Zero Trust controls.
- Assess existing environments and develop Zero Trust transformation roadmaps.
- Ensure alignment with NIST SP 800-207 and industry best practices.
Network Segmentation
- Design enterprise network segmentation and micro-segmentation strategies.
- Define trust zones and security boundaries across corporate, cloud, OT, and DMZ environments.
- Review firewall architectures and segmentation policies.
- Support implementation of Software-Defined Perimeter (SDP) and Software-Defined Networking (SDN) security controls.
- Recommend improvements to reduce attack surface and limit lateral movement.
- Validate segmentation effectiveness through architecture reviews and security assessments.
Cloud & Infrastructure Security
- Design secure cloud architectures across AWS, Azure, Google Cloud, and Oracle Cloud Infrastructure (OCI).
- Define secure hybrid-cloud and multi-cloud architectures.
- Develop standards for container, Kubernetes, API, and serverless security.
- Review infrastructure-as-code (IaC) security controls.
- Support DevSecOps initiatives by embedding security into CI/CD pipelines.
Risk & Governance
- Translate business and regulatory requirements into technical security architecture requirements.
- Support enterprise risk assessments from an architectural perspective.
- Develop and maintain security architecture standards, technical policies, and implementation guidelines.
- Provide technical support during security audits and compliance assessments.
- Review technology risks and recommend mitigation strategies.
Technical Leadership
- Provide expert guidance to engineering and project teams on secure architecture practices.
- Mentor security engineers and junior architects.
- Represent cybersecurity within enterprise architecture forums.
- Participate in technology evaluations and security due diligence.
- Promote architecture consistency across business units and technology domains.
Continuous Improvement
- Monitor emerging cybersecurity threats, technologies, and industry trends.
- Continuously improve enterprise security architecture frameworks and standards.
- Support cybersecurity maturity initiatives.
- Identify opportunities to automate security controls and architecture governance.
Required Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related discipline.
- 8+ years of experience in cybersecurity, including at least 5 years in security architecture or solution architecture.
- Proven experience designing secure enterprise, cloud, and hybrid environments.
- Strong experience leading architecture reviews and enterprise security initiatives.
- Experience working within large-scale enterprise environments.
• Enterprise Security Architecture
- Security-by-Design
• Secure Solution Architecture
- Threat Modeling
• Security Architecture Frameworks
- Identity and Access Management (IAM)
• Privileged Access Management (PAM)
- API Security
• Zero Trust Architecture (NIST SP 800-207)
- Network Segmentation
- Micro-Segmentation
• Software-Defined Networking (SDN)
- Next-Generation Firewalls
• Network Access Control (NAC)
- DNS Security
Cloud Security
- Microsoft Azure
• Google Cloud Platform (GCP)
- Kubernetes Security
- Container Security
- Infrastructure as Code (Terraform, ARM, CloudFormation)
- DevSecOps
- CI/CD Security
Security Technologies
- SIEM
- EDR/XDR
- Identity Providers (Microsoft Entra ID, Okta, Ping Identity)
- Secrets Management
- Vulnerability Management
• Data Loss Prevention (DLP)
- PKI and Certificate Management
• NIST SP 800-207 (Zero Trust Architecture)
- ISO/IEC 27001 and ISO/IEC 27002
• OWASP Top 10
- OWASP ASVS
• Secure Software Development Lifecycle (SSDLC)
- Cloud Security Alliance (CSA) Cloud Controls Matrix
- Enterprise Architecture methodologies (TOGAF preferred)
Preferred Certifications
- CISSP (Required or strongly preferred)
- CCSP
- SABSA Foundation or Practitioner
- TOGAF
• GIAC Defensible Security Architecture (GDSA)
- Microsoft AZ-500
- AWS Certified Security – Specialty
• OCI Security Professional
- CRISC (Preferred)
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Acuative Middle East
Compliance Manager
Jeddah, KSA
Job Summary The Governance, Risk & Compliance (GRC) Lead is responsible for leading the organization's cybersecurity governance, risk management, and compliance program. The role ensures the effective implementation, mon
Endpoint & Email Security Engineer
Jeddah, KSA
Job Summary The Endpoint & Email Security Engineer is responsible for the day-to-day operation, administration, and optimization of the organization's endpoint and email security platforms. The primary focus of this role
Senior Security Architect
Jeddah, KSA
Job Summary The Security Architecture & GRC Lead is responsible for leading the organization's security architecture and governance initiatives, ensuring that security is embedded into the design, implementation, and ope
Risk & Governance Analyst
Jeddah, KSA
Job Summary The Risk & Governance Analyst is responsible for supporting the organization's cybersecurity governance, risk, and compliance (GRC) program. The primary focus of this role is the management of the cybersecuri
Security Operations Manager
Jeddah, KSA
Job Summary The Security Operations Lead is responsible for leading the organization's Security Operations Center (SOC) and ensuring the effective monitoring, detection, investigation, and response to cybersecurity threa
Power BI Developer
Jeddah, KSA
Design, develop, and maintain enterprise reporting and business intelligence solutions using Power BI, SQL, and Python. Collaborate with stakeholders to create interactive dashboards and ensure data accuracy.
Field Services Engineer
Doha, QAT
Job Summary We are seeking a highly experienced Field Service Engineer to support on-site deployment, installation, and maintenance of advanced data center infrastructure. The ideal candidate will have deep hands-on expe
Field Services Engineer
Abu Dhabi Emirate, UAE
Job Summary We are seeking a highly experienced Field Service Engineer to support on-site deployment, installation, and maintenance of advanced data center infrastructure. The ideal candidate will have deep hands-on expe
Compliance Manager
Jeddah, KSA
Endpoint & Email Security Engineer
Jeddah, KSA
Senior Security Architect
Jeddah, KSA
Risk & Governance Analyst
Jeddah, KSA
Security Operations Manager
Jeddah, KSA
Power BI Developer
Jeddah, KSA
Field Services Engineer
Doha, QAT
Field Services Engineer
Abu Dhabi Emirate, UAE