Solution Architect Senior Security Engineer

Summary

Join New Era Technology as a Senior Cybersecurity Solution Architect to lead and evolve the organization’s enterprise information security architecture program. You will conduct comprehensive assessments of the current program, create multi-year roadmaps for improvement, and align cybersecurity objectives with business goals. Responsibilities include designing secure architectures for data protection and various environments, ensuring compliance with regulations, and collaborating with various teams. The ideal candidate will have extensive experience in cybersecurity architecture, risk management, and compliance, along with expertise in cloud security, IAM, and various security tools and technologies. This role requires strong leadership, communication, and analytical skills. New Era offers a team-oriented culture, continuous training, and competitive benefits.

Requirements

• 10+ years in cybersecurity, with 5+ years in hands-on security architecture, risk management, and compliance. Proven success in leading large-scale security transformations
• 5+ years of cyber and information security solution architecture and / or engineering experience on cloud service platforms control design automation including for primary cloud service providers MS Azure and AWS. And for smaller customer deployment footprint cloud services providers GCP, OCI and Alibaba
• 3-5+ years of significant experience in cloud security and cloud security posture management
• 2 – 3+ years of experience creating solution and deployment architecture
• Hands-on experience with IAM protocols (e.g., OAuth, SAML, OIDC, etc.)
• Mastery of security frameworks (NIST, CIS, ISO 27001), risk assessment methodologies, and threat modeling
• Hands-on experience with SIEM tools (e.g., Splunk, ArcSight), firewalls, IDS/IPS, and encryption technologies
• Expertise in cloud security (AWS/Azure GCP), containerization (Docker/Kubernetes), and DevOps security (DevSecOps)
• Knowledge of backup and resiliency solutions (e.g., data replication, immutable storage, ransomware defenses)
• Designing secure architectures experience for SaaS/PaaS/IaaS and on-premise (hybrid) environments
• Must be able to create and maintain solution architecture documentation
• Expertise in security governance control design and monitoring
• Must be able to identify applicable best practices, standards and document the solution architecture
• Ability to explain and write technical details to a non-technical audience and vice versa
• Ability to work autonomously and under pressure
• Ability to influence others and demonstrate leadership
• Excellent attention to detail
• Strong organizational skills
• Excellent analytical skills
• Excellent documentation skills; demonstrated proficiency in Microsoft Office including Visio, Word, Excel and PowerPoint
• Collaborative team worker – both in person and virtually using MS Teams or similar
• Ability to work as liaison between business and information security / information technology
• Flexibility to accommodate working across different time zones
• Excellent interpersonal communication skills with strong spoken and written English
• Business outcomes mindset
• Solid balance of strategic thinking with detail orientation
• Self-starter, ability to take initiative

Responsibilities

• Conduct a comprehensive assessment of the current information security architecture program, including policies, controls, and technologies
• Future-proof control design for future and current state cybersecurity domain capabilities deployments: Identity and Access Management (IAM) including Privileged Access Management (PAM), Cloud Security Posture Management (CSPM), Zero Trust, End Point Security, Network Security, DevOps and Application Security, IT Governance, Risk and Compliance (GRC), Network Security, Data Protection, Incident Response, Cryptography and Key Management, Exposure and Vulnerability Management, Security Orchestration and Automated Remediation (SOAR), and Third Party Risk Management
• Create a multi-year roadmap to mature the cybersecurity enterprise architecture function and for control design implementation (e.g., turnover to engineering), prioritizing initiatives such as zero-trust architecture, identity management, and threat detection and remediation designs
• Align cybersecurity objectives with business goals, ensuring compliance with regulatory requirements (e.g., GDPR, HIPAA, CCPA, etc.)
• Design and oversee the turnover to implementation of scalable, secure architectures for data protection, cloud environments, and hybrid systems
• Ensure control design integration of backup, disaster recovery (DR), and business continuity (BC) solutions into the broader security ecosystem
• Support the definition of technical standards, and governance frameworks for secure software development and third-party risk management
• Partner with IT, engineering, legal, line of business product owners and executive teams to advocate for security investments and prioritize initiatives
• Present complex technical concepts to non-technical audiences, including executives
• Stay current with emerging threats, tools, and technologies (e.g., AI/ML in threat detection, zero-trust models, cloud-native security)
• Propose innovative solutions to strengthen the product resiliency portfolio, including encryption, data integrity, and breach prevention
• Document current state security architectures to build future state architectures for roadmapping purposes
• Identify and document control design (solution architecture) for tools rationalization for overlapping capabilities in the environment for data security posture management and application security posture management in cloud service providers and hybrid deployments
• Provide Baseline Architectural Artifacts: Business, functional, and technical requirements documents, as well as reference architecture diagrams
• Define the Technology Stack with clear definitions and recommendations for tools rationalization future states
• Enhance and evolve current frameworks for assessing cybersecurity controls coverage across platforms (e.g., infrastructure technologies, applications technologies) and environments (e.g., Data Center, IaaS, PaaS, SaaS, DevOps) as well as maturity of control design implementation adherence

Preferred Qualifications

• Experience using Terraform, AWS CloudFormation, Azure Resource Manager and other equivalent multi-cloud vendor automation tools (e.g., Chef, etc.) is a plus
• Cybersecurity certifications such as CISSP, CISM a plus
• Experience working at a company with a global footprint and a large enterprise environment