{bc}
linkedin

Senior Security Architect

Acuative Middle East
Jeddah, KSA
fulltime
Mid-Senior
Today
Network SecurityCloud SecurityCybersecurity FrameworksRisk ManagementSecurity AuditsThreat Modeling
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Network SecurityCloud SecurityCybersecurity Frameworks
Smart Apply

Full Job Posting

Job Summary

The Senior Security Architect is responsible for defining, governing, and advancing the organization's cybersecurity architecture to ensure security is embedded across enterprise, cloud, network, and application environments.

The role provides technical leadership in designing secure solutions, conducting architecture and design reviews, and driving strategic initiatives such as Zero Trust Architecture and network segmentation.

Working closely with Enterprise Architecture, Infrastructure, Cloud, Network, DevOps, Application Development, and Security Operations teams, the Senior Security Architect ensures that security-by-design principles are consistently applied throughout the technology lifecycle and that security risks are identified and mitigated before implementation.

Security Architecture

  • Develop and maintain the enterprise cybersecurity architecture strategy, principles, standards, and reference architectures.
  • Define security architecture requirements for infrastructure, applications, cloud services, and business solutions.
  • Ensure security is integrated into all phases of the solution lifecycle using Security-by-Design principles.
  • Develop architecture patterns, technical standards, and security baselines.
  • Evaluate emerging technologies and recommend secure architectural approaches.
  • Provide technical leadership on enterprise security transformation initiatives.

Secure Design Reviews

  • Lead security architecture reviews for infrastructure, cloud, network, and application projects.
  • Conduct secure design assessments and identify architectural risks.
  • Perform threat modeling and recommend appropriate security controls.
  • Review solution designs for compliance with enterprise security standards and regulatory requirements.
  • Provide technical recommendations to project teams to address identified security gaps.
  • Review and approve security exceptions with appropriate compensating controls.
  • Participate in architecture review boards and technical governance committees.

Zero Trust Architecture

  • Lead the development and implementation of the organization's Zero Trust Architecture strategy.
  • Design identity-centric security models based on continuous verification and least privilege.
  • Define Zero Trust principles for users, workloads, devices, applications, and data.
  • Collaborate with IAM, Network, Endpoint, and Cloud teams to implement Zero Trust controls.
  • Assess existing environments and develop Zero Trust transformation roadmaps.
  • Ensure alignment with NIST SP 800-207 and industry best practices.

Network Segmentation

  • Design enterprise network segmentation and micro-segmentation strategies.
  • Define trust zones and security boundaries across corporate, cloud, OT, and DMZ environments.
  • Review firewall architectures and segmentation policies.
  • Support implementation of Software-Defined Perimeter (SDP) and Software-Defined Networking (SDN) security controls.
  • Recommend improvements to reduce attack surface and limit lateral movement.
  • Validate segmentation effectiveness through architecture reviews and security assessments.

Cloud & Infrastructure Security

  • Design secure cloud architectures across AWS, Azure, Google Cloud, and Oracle Cloud Infrastructure (OCI).
  • Define secure hybrid-cloud and multi-cloud architectures.
  • Develop standards for container, Kubernetes, API, and serverless security.
  • Review infrastructure-as-code (IaC) security controls.
  • Support DevSecOps initiatives by embedding security into CI/CD pipelines.

Risk & Governance

  • Translate business and regulatory requirements into technical security architecture requirements.
  • Support enterprise risk assessments from an architectural perspective.
  • Develop and maintain security architecture standards, technical policies, and implementation guidelines.
  • Provide technical support during security audits and compliance assessments.
  • Review technology risks and recommend mitigation strategies.

Technical Leadership

  • Provide expert guidance to engineering and project teams on secure architecture practices.
  • Mentor security engineers and junior architects.
  • Represent cybersecurity within enterprise architecture forums.
  • Participate in technology evaluations and security due diligence.
  • Promote architecture consistency across business units and technology domains.

Continuous Improvement

  • Monitor emerging cybersecurity threats, technologies, and industry trends.
  • Continuously improve enterprise security architecture frameworks and standards.
  • Support cybersecurity maturity initiatives.
  • Identify opportunities to automate security controls and architecture governance.

Required Qualifications

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related discipline.
  • 8+ years of experience in cybersecurity, including at least 5 years in security architecture or solution architecture.
  • Proven experience designing secure enterprise, cloud, and hybrid environments.
  • Strong experience leading architecture reviews and enterprise security initiatives.
  • Experience working within large-scale enterprise environments.

• Enterprise Security Architecture

  • Security-by-Design

• Secure Solution Architecture

  • Threat Modeling

• Security Architecture Frameworks

  • Identity and Access Management (IAM)

• Privileged Access Management (PAM)

  • API Security

• Zero Trust Architecture (NIST SP 800-207)

  • Network Segmentation
  • Micro-Segmentation

• Software-Defined Networking (SDN)

  • Next-Generation Firewalls

• Network Access Control (NAC)

  • DNS Security

Cloud Security

  • Microsoft Azure

• Google Cloud Platform (GCP)

  • Kubernetes Security
  • Container Security
  • Infrastructure as Code (Terraform, ARM, CloudFormation)
  • DevSecOps
  • CI/CD Security

Security Technologies

  • SIEM
  • EDR/XDR
  • Identity Providers (Microsoft Entra ID, Okta, Ping Identity)
  • Secrets Management
  • Vulnerability Management

• Data Loss Prevention (DLP)

  • PKI and Certificate Management

• NIST SP 800-207 (Zero Trust Architecture)

  • ISO/IEC 27001 and ISO/IEC 27002

• OWASP Top 10

  • OWASP ASVS

• Secure Software Development Lifecycle (SSDLC)

  • Cloud Security Alliance (CSA) Cloud Controls Matrix
  • Enterprise Architecture methodologies (TOGAF preferred)

Preferred Certifications

  • CISSP (Required or strongly preferred)
  • CCSP
  • SABSA Foundation or Practitioner
  • TOGAF

• GIAC Defensible Security Architecture (GDSA)

  • Microsoft AZ-500
  • AWS Certified Security – Specialty

• OCI Security Professional

  • CRISC (Preferred)

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Acuative Middle East