{bc}
linkedin

Senior Security Architect

Acuative Middle East
Jeddah, KSA
fulltime
Mid-Senior
Today
Network SecurityCloud SecurityCybersecurity FrameworksRisk ManagementSecurity AuditsThreat Modeling
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Network SecurityCloud SecurityCybersecurity Frameworks
Smart Apply

Full Job Posting

Job Summary

The Security Architecture & GRC Lead is responsible for leading the organization's security architecture and governance initiatives, ensuring that security is embedded into the design, implementation, and operation of business and technology solutions.

This role focuses on defining security architecture standards, conducting secure design reviews, driving network segmentation and Zero Trust initiatives, and ensuring alignment with governance, risk, and compliance (GRC) requirements.

The role works closely with Enterprise Architecture, Infrastructure, Cloud, Network, Application Development, and Security Operations teams to ensure security-by-design principles are consistently applied across all technology projects and operational environments.

Security Architecture

  • Develop and maintain the organization's cybersecurity architecture strategy, standards, and reference architectures.
  • Review and approve solution architectures to ensure compliance with security policies and industry best practices.
  • Define security requirements for new technologies, applications, cloud services, and infrastructure projects.
  • Ensure security controls are incorporated throughout the system development lifecycle (SDLC).
  • Provide technical guidance on secure architecture patterns for on-premises, cloud, and hybrid environments.
  • Evaluate emerging technologies and recommend secure implementation approaches.
  • Maintain architecture documentation, standards, and security design patterns.

Secure Design Reviews

  • Lead security architecture reviews for new and existing systems.
  • Conduct threat modeling and security design assessments.
  • Identify architectural risks and recommend mitigation strategies.
  • Validate compliance with security architecture standards before production deployment.
  • Review application, network, cloud, and infrastructure designs.
  • Collaborate with project teams to integrate security early in project lifecycles (Shift Left).
  • Review security exceptions and provide risk-based recommendations.

Network Segmentation & Zero Trust

  • Define and maintain enterprise network segmentation strategies.
  • Lead the design and implementation of Zero Trust Architecture (ZTA).
  • Develop security zoning and trust boundary models.
  • Review micro-segmentation and software-defined perimeter (SDP) implementations.
  • Define identity-based access models aligned with Zero Trust principles.
  • Collaborate with network and cloud teams to implement secure connectivity models.
  • Ensure least-privilege access and continuous verification principles are embedded across enterprise environments.

Governance, Risk & Compliance (GRC)

  • Ensure security architecture aligns with organizational risk management and compliance requirements.
  • Support risk assessments for new technologies and architectural changes.
  • Develop and maintain security architecture standards, policies, and technical baselines.
  • Provide technical input into governance forums and architecture review boards.
  • Support internal and external audits related to security architecture and technical controls.
  • Review and approve security-related exceptions and compensating controls.

Collaboration & Advisory

  • Partner with Enterprise Architects, Infrastructure, Cloud, Network, and Application teams throughout project delivery.
  • Provide technical security consultation to business and technology stakeholders.
  • Mentor engineering teams on secure architecture principles and security best practices.
  • Participate in technology selection and vendor security evaluations.
  • Support incident response teams by providing architectural guidance during major security incidents.

Continuous Improvement

  • Monitor emerging cybersecurity threats and evolving architecture practices.
  • Review and update security architecture standards regularly.
  • Promote automation and security-by-design practices.
  • Drive continuous improvement of enterprise security architecture maturity.
  • Support adoption of modern security technologies and frameworks.

Required Qualifications

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related field.
  • 7+ years of experience in cybersecurity, with at least 3 years in security architecture, enterprise security, or GRC.
  • Demonstrated experience designing secure enterprise, cloud, and hybrid architectures.
  • Strong understanding of security governance and architecture review processes.
  • Experience leading cross-functional security initiatives.

• Secure Solution Design

  • Security-by-Design
  • Threat Modeling

• Security Reference Architectures

  • Identity and Access Management (IAM)

• Privileged Access Management (PAM)

  • API Security
  • Container and Kubernetes Security
  • Cloud Security Architecture (AWS, Azure, OCI, GCP)

Network & Infrastructure Security

  • Network Segmentation
  • Micro-Segmentation

• Software-Defined Networking (SDN)

  • Firewalls and Next-Generation Firewalls

• Network Access Control (NAC)

  • VPN Technologies
  • DNS Security

Governance & Risk

  • Security Policies and Standards

• Security Control Frameworks

  • Risk Assessments

• Security Exceptions Management

  • Control Validation
  • Compliance Assessments
  • Security Baselines

• Zero Trust Architecture (NIST SP 800-207)

  • SABSA
  • TOGAF (preferred)
  • ISO/IEC 27001 and ISO/IEC 27002

• CIS Critical Security Controls

  • OWASP ASVS and Top 10

• Secure Software Development Lifecycle (SSDLC)

  • Cloud Security Alliance (CSA) Cloud Controls Matrix

Preferred Certifications

  • CISSP

• CCSP (Certified Cloud Security Professional)

  • SABSA Foundation or Practitioner
  • TOGAF Certification
  • CRISC
  • ISO/IEC 27001 Lead Implementer or Lead Auditor
  • Microsoft Azure Security Engineer (AZ-500), AWS Security Specialty, or OCI Security Professional (as applicable)
  • GIAC GDSA (Defensible Security Architecture) or equivalent (preferred)

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Acuative Middle East