Security Architect

We are:

We are a security and cloud advisory company composed of hands-on experts with deep technical experience. We partner with organizations ranging from fast-growing startups to large enterprises, helping them design, implement, and operate secure systems end-to-end.

Acting as trusted advisors, we deliver independent, tailored solutions across cloud, application, and emerging technology environments. We stay involved beyond architecture, working closely with engineering teams to ensure security is effectively integrated into real-world systems.

About the position:

We are looking for a Security Architect to design and lead the development of secure architectures across cloud, applications, and modern technology stacks. This role combines strong technical expertise with an advisory mindset, working closely with clients and internal teams to deliver practical, business-aligned security solutions. 

You will play a key role in shaping security architectures for a variety of environments, including cloud-native systems, product platforms, and transformation initiatives such as cloud migration and adoption of new technologies, including AI-driven systems. 

This role goes beyond high-level design, involving close engagement with engineering teams to ensure security architectures are practical, implementable, and effectively realized in production.

Responsibilities:

• Design secure architectures for cloud infrastructure, applications, and modern systems, aligning security with business goals to deliver scalable, resilient, and secure solutions.
• Lead security architecture engagements end-to-end, from initial assessment through design and into implementation and validation.
• Conduct hands-on security reviews and structured threat modeling across distributed systems, cloud environments, and modern application architectures, including emerging risks in AI/LLM-based systems (e.g., prompt injection, data exposure, misuse of AI capabilities).
• Ensure security architectures align with standards and frameworks such as ISO 27001, SOC2, and industry best practices.
• Partner with engineering and product teams to design secure software and product architectures, embedding security into the SDLC through threat modeling, secure coding practices, and architecture reviews.
• Lead security architecture for transformation initiatives such as cloud migrations, platform modernization, and integration of AI-powered capabilities.
• Evaluate and guide the integration of security technologies and controls, ensuring they align with architectural goals and organizational needs.
• Design and review identity and access architectures, applying principles such as least privilege and zero trust across systems and services.
• Work closely with engineering teams during implementation to ensure security designs are correctly translated into deployed solutions, providing guidance on configurations, patterns, and trade-offs.
• Validate and troubleshoot security architectures in real environments, ensuring controls are effectively implemented in production.
• Translate security risks into business impact, enabling informed, risk-based decision making.
• Communicate complex security concepts clearly to a wide range of stakeholders, from developers to leadership.
• Stay current with emerging technologies and evolving threat landscapes, continuously improving architecture practices and recommendations.
• Mentor team members and contribute to a culture of technical excellence, knowledge sharing, and high-quality delivery.

Qualifications:

• 6+ years of experience in cybersecurity, with hands-on experience in cloud security and/or application security.
• Strong architectural understanding of at least one major cloud platform (AWS, Azure, or GCP), with the ability to design secure cloud-native solutions.
• Experience designing and securing containerized applications and Kubernetes-based environments.
• Solid understanding of secure application and product design, threat modeling, and secure development practices, including the ability to read and reason about application code.
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines (e.g., SAST, DAST, container security).
• Strong communication skills, with the ability to explain security concepts clearly to both technical and non-technical audiences.
• Familiarity with security considerations in AI-enabled applications, including risks related to LLMs and agent-based systems - advantage.
• Security certifications such as CISSP, CISM, or cloud security certifications - advantage.
• Background in penetration testing or offensive security - advantage.