CYBERSECURITY ARCHITECT

Key Responsibilities

Architect, deploy, and maintain security solutions safeguarding applications, infrastructure, and networks.

Conduct vulnerability scanning, penetration testing, and threat analysis to proactively identify and remediate risks.

Monitor, detect, and respond to incidents through SIEM and SOC platforms.

Define and enforce organizational security standards, policies, and operating procedures.

Collaborate with IT, DevOps, and engineering teams to embed security into application and infrastructure design.

Automate security processes, including monitoring, incident handling, and reporting workflows.

Administer security technologies such as firewalls, IDS/IPS, endpoint security, and identity/access management tools.

Ensure organizational compliance with regulatory requirements and security frameworks (ISO 27001, NIST, GDPR, HIPAA, PCI-DSS).

Deliver awareness programs and training initiatives to strengthen cybersecurity culture.

Required Technical Expertise (Tough Skills)

Network & Infrastructure Security: In-depth knowledge of IDS/IPS, firewalls, VPNs, WAFs, load balancers, and segmentation strategies.

Security Platforms: Practical experience with SIEM (Splunk, QRadar, ELK), EDR/XDR (CrowdStrike, SentinelOne, Carbon Black), and vulnerability scanners (Qualys, Nessus, OpenVAS).

Cloud Security: Skilled in securing AWS, Azure, and GCP workloads - covering IAM, encryption, CSPM, and network security groups.

Application Security: Familiar with OWASP Top 10 risks, secure SDLC, and SAST/DAST tools (Checkmarx, Veracode, Burp Suite).

Identity & Access Management (IAM): Hands-on with SSO, MFA, PAM, Active Directory, Okta, and Azure AD.

Incident Response & Forensics: Experience in malware reverse engineering, packet analysis (tcpdump, Wireshark), and forensic toolsets.

Scripting & Automation: Strong ability to automate repetitive tasks using Python, PowerShell, or Bash.

Cryptography & Data Protection: Understanding of TLS/SSL, PKI, tokenization, and secure key management practices.

Operating Systems Security: Expertise in administering and hardening both Linux and Windows platforms.

DevSecOps: Knowledge of container and pipeline security, including Docker, Kubernetes, and CI/CD hardening.

Nice to Have

Professional certifications such as CISSP, CCSP, CEH, OSCP, CompTIA Security+, GIAC, or GCIH.

Exposure to Zero Trust Architecture and microsegmentation.

Familiarity with SOAR tools and threat intelligence platforms.