Principal Architect - IT Security

The main objective of this role is to architect, design, and communicate comprehensive security strategies and solutions to meet current and future business needs while aligning with corporate IT standards and security architecture guiding principles.

Key Responsibilities:

• Develop optimal IT Security solutions that align with customer requirements, ensuring secure, robust, and high-quality architecture conforming to corporate IT standards.
• Take accountability for the end-to-end security architecture, making decisions on architecture and technology.
• Develop security architecture standards and best practices across information, application, and technology domains, ensuring awareness across IT teams.
• Conduct security architecture design reviews for applications, data, and infrastructure (both cloud and on-premises) to identify gaps ensuring adherence to security guidelines.
• Collaborate with developers and solution architects on secure application architectures, ensuring secure coding practices.
• Monitor emerging threats and trends, adapting security solutions to mitigate risks and evaluating security technologies for integration.
• Conduct vendor product security architecture reviews and propose improvement recommendations for security controls.
• Perform code analysis using Static and Dynamic Application Security Testing and conduct manual vulnerability analysis.
• Assist the InfoSec and Enterprise Security team in risk assessments and data loss prevention strategies.
• Develop logical infrastructure solutions in alignment with security standards, working closely with infrastructure teams.
• Manage the security architecture roadmap, overseeing the identification and prioritization of technical enablers and improvement activities.
• Engage in the end-to-end project lifecycle to manage security architecture and guide best practices.

Qualifications:

• Bachelor's Degree in Information Technology, Computer Science, or a related field.
• Minimum 3 years of experience as a Security Solution Architect or similar roles (Application/Product Security Engineer).
• Fluent in English.
• Strong familiarity with common vulnerabilities and attack vectors.
• Experience integrating security testing into the Software Development Life Cycle (SDLC).
• Knowledge of security technologies and solutions, including firewalls, intrusion detection/prevention systems, and encryption solutions.
• Proficiency with security tools in software development (SAST, DAST) and infrastructure security tools.
• Understanding of secure network and system design in both cloud and conventional environments.
• Knowledge of industry best practices and security standards such as OWASP, GDPR, PCI DSS, and NIST.
• Preferred certifications: CISSP, CCNP Security, CISA, CEH.

Competencies:

• Customer Focus
• Teamwork
• Effective Communication
• Personal Accountability & Commitment to Achieve
• Resilience and Flexibility
• Decision Making
• Strategic Thinking
• Business Acumen

Language Requirements: Fluent in English.