CyberSecurity Architect

Key Responsibilities

• Design, implement, and maintain secure architectures across on-premises and cloud environments (AWS, Azure, GCP).
• Conduct advanced penetration testing, red teaming, and vulnerability assessments on applications, networks, and systems.
• Review and harden system configurations, identity & access management, and network segmentation models.
• Develop threat models and define security architecture blueprints aligned with enterprise risk frameworks.
• Provide expert guidance on remediation of vulnerabilities and coordinate with system owners and developers.
• Integrate security into the SDLC and DevSecOps pipelines recommend secure coding and deployment practices.
• Support incident response teams in identifying root causes and developing post-incident improvements.
• Evaluate and select appropriate security tools, frameworks, and technologies to strengthen enterprise defense.
• Conduct technical security reviews for third-party solutions and new technologies.
• Mentor security engineers and penetration testers establish security testing methodologies and standards.

Required Skills & Qualifications

• Bachelor's degree in Computer Science, Information Security, or related discipline.
• Minimum 8+ years of experience in cybersecurity, including 3+ years in security architecture and penetration testing.
• Proven hands-on expertise in:
  Penetration testing tools: Burp Suite, Metasploit, Nmap, Nessus, Kali Linux, etc.
  Security frameworks: NIST, ISO 27001, CIS, MITRE ATT&CK.
  Scripting languages: Python, PowerShell, or Bash.
  Cloud security controls for AWS / Azure / GCP.
• Deep understanding of network security, application security, encryption, IAM, and threat modeling.
• Strong communication and documentation skills for presenting technical findings to stakeholders.
• Certification:
  Mandatory: OSCP (Offensive Security Certified Professional)
  Preferred: CISSP, CISM, CEH, or AWS Security Specialty

Preferred Experience

• Prior experience in security architecture consulting, red teaming, or offensive security assessments.
• Exposure to container security (Docker, Kubernetes) and cloud-native application protection.
• Knowledge of SIEM/SOAR integration and automation workflows.
• Experience in designing Zero Trust and Defense-in-Depth architectures.

Soft Skills

• Analytical mindset with the ability to think like an attacker and architect like a defender.
• Excellent stakeholder management and presentation skills.
• Strong problem-solving and critical-thinking abilities.
• Ability to work independently and collaboratively across diverse teams.