Senior Security Architect
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
The Security Architecture & GRC Lead is responsible for leading the organization's security architecture and governance initiatives, ensuring that security is embedded into the design, implementation, and operation of business and technology solutions.
Key Skills for This Role
Full Job Posting
Job Summary
The Security Architecture & GRC Lead is responsible for leading the organization's security architecture and governance initiatives, ensuring that security is embedded into the design, implementation, and operation of business and technology solutions.
This role focuses on defining security architecture standards, conducting secure design reviews, driving network segmentation and Zero Trust initiatives, and ensuring alignment with governance, risk, and compliance (GRC) requirements.
The role works closely with Enterprise Architecture, Infrastructure, Cloud, Network, Application Development, and Security Operations teams to ensure security-by-design principles are consistently applied across all technology projects and operational environments.
Security Architecture
- Develop and maintain the organization's cybersecurity architecture strategy, standards, and reference architectures.
- Review and approve solution architectures to ensure compliance with security policies and industry best practices.
- Define security requirements for new technologies, applications, cloud services, and infrastructure projects.
- Ensure security controls are incorporated throughout the system development lifecycle (SDLC).
- Provide technical guidance on secure architecture patterns for on-premises, cloud, and hybrid environments.
- Evaluate emerging technologies and recommend secure implementation approaches.
- Maintain architecture documentation, standards, and security design patterns.
Secure Design Reviews
- Lead security architecture reviews for new and existing systems.
- Conduct threat modeling and security design assessments.
- Identify architectural risks and recommend mitigation strategies.
- Validate compliance with security architecture standards before production deployment.
- Review application, network, cloud, and infrastructure designs.
- Collaborate with project teams to integrate security early in project lifecycles (Shift Left).
- Review security exceptions and provide risk-based recommendations.
Network Segmentation & Zero Trust
- Define and maintain enterprise network segmentation strategies.
- Lead the design and implementation of Zero Trust Architecture (ZTA).
- Develop security zoning and trust boundary models.
- Review micro-segmentation and software-defined perimeter (SDP) implementations.
- Define identity-based access models aligned with Zero Trust principles.
- Collaborate with network and cloud teams to implement secure connectivity models.
- Ensure least-privilege access and continuous verification principles are embedded across enterprise environments.
Governance, Risk & Compliance (GRC)
- Ensure security architecture aligns with organizational risk management and compliance requirements.
- Support risk assessments for new technologies and architectural changes.
- Develop and maintain security architecture standards, policies, and technical baselines.
- Provide technical input into governance forums and architecture review boards.
- Support internal and external audits related to security architecture and technical controls.
- Review and approve security-related exceptions and compensating controls.
Collaboration & Advisory
- Partner with Enterprise Architects, Infrastructure, Cloud, Network, and Application teams throughout project delivery.
- Provide technical security consultation to business and technology stakeholders.
- Mentor engineering teams on secure architecture principles and security best practices.
- Participate in technology selection and vendor security evaluations.
- Support incident response teams by providing architectural guidance during major security incidents.
Continuous Improvement
- Monitor emerging cybersecurity threats and evolving architecture practices.
- Review and update security architecture standards regularly.
- Promote automation and security-by-design practices.
- Drive continuous improvement of enterprise security architecture maturity.
- Support adoption of modern security technologies and frameworks.
Required Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related field.
- 7+ years of experience in cybersecurity, with at least 3 years in security architecture, enterprise security, or GRC.
- Demonstrated experience designing secure enterprise, cloud, and hybrid architectures.
- Strong understanding of security governance and architecture review processes.
- Experience leading cross-functional security initiatives.
• Secure Solution Design
- Security-by-Design
- Threat Modeling
• Security Reference Architectures
- Identity and Access Management (IAM)
• Privileged Access Management (PAM)
- API Security
- Container and Kubernetes Security
- Cloud Security Architecture (AWS, Azure, OCI, GCP)
Network & Infrastructure Security
- Network Segmentation
- Micro-Segmentation
• Software-Defined Networking (SDN)
- Firewalls and Next-Generation Firewalls
• Network Access Control (NAC)
- VPN Technologies
- DNS Security
Governance & Risk
- Security Policies and Standards
• Security Control Frameworks
- Risk Assessments
• Security Exceptions Management
- Control Validation
- Compliance Assessments
- Security Baselines
• Zero Trust Architecture (NIST SP 800-207)
- SABSA
- TOGAF (preferred)
- ISO/IEC 27001 and ISO/IEC 27002
• CIS Critical Security Controls
- OWASP ASVS and Top 10
• Secure Software Development Lifecycle (SSDLC)
- Cloud Security Alliance (CSA) Cloud Controls Matrix
Preferred Certifications
- CISSP
• CCSP (Certified Cloud Security Professional)
- SABSA Foundation or Practitioner
- TOGAF Certification
- CRISC
- ISO/IEC 27001 Lead Implementer or Lead Auditor
- Microsoft Azure Security Engineer (AZ-500), AWS Security Specialty, or OCI Security Professional (as applicable)
- GIAC GDSA (Defensible Security Architecture) or equivalent (preferred)
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Acuative Middle East
Compliance Manager
Jeddah, KSA
Job Summary The Governance, Risk & Compliance (GRC) Lead is responsible for leading the organization's cybersecurity governance, risk management, and compliance program. The role ensures the effective implementation, mon
Endpoint & Email Security Engineer
Jeddah, KSA
Job Summary The Endpoint & Email Security Engineer is responsible for the day-to-day operation, administration, and optimization of the organization's endpoint and email security platforms. The primary focus of this role
Senior Security Architect
Jeddah, KSA
Job Summary The Senior Security Architect is responsible for defining, governing, and advancing the organization's cybersecurity architecture to ensure security is embedded across enterprise, cloud, network, and applicat
Risk & Governance Analyst
Jeddah, KSA
Job Summary The Risk & Governance Analyst is responsible for supporting the organization's cybersecurity governance, risk, and compliance (GRC) program. The primary focus of this role is the management of the cybersecuri
Security Operations Manager
Jeddah, KSA
Job Summary The Security Operations Lead is responsible for leading the organization's Security Operations Center (SOC) and ensuring the effective monitoring, detection, investigation, and response to cybersecurity threa
Power BI Developer
Jeddah, KSA
Design, develop, and maintain enterprise reporting and business intelligence solutions using Power BI, SQL, and Python. Collaborate with stakeholders to create interactive dashboards and ensure data accuracy.
Field Services Engineer
Doha, QAT
Job Summary We are seeking a highly experienced Field Service Engineer to support on-site deployment, installation, and maintenance of advanced data center infrastructure. The ideal candidate will have deep hands-on expe
Field Services Engineer
Abu Dhabi Emirate, UAE
Job Summary We are seeking a highly experienced Field Service Engineer to support on-site deployment, installation, and maintenance of advanced data center infrastructure. The ideal candidate will have deep hands-on expe
Compliance Manager
Jeddah, KSA
Endpoint & Email Security Engineer
Jeddah, KSA
Senior Security Architect
Jeddah, KSA
Risk & Governance Analyst
Jeddah, KSA
Security Operations Manager
Jeddah, KSA
Power BI Developer
Jeddah, KSA
Field Services Engineer
Doha, QAT
Field Services Engineer
Abu Dhabi Emirate, UAE