Job Openings Security Architect

About the job Security Architect

Job Description

You are a Security Architect responsible for designing and governing security solutions across Privileged Access Management (PAM), Secrets Management (SM), and Identity Threat Detection & Response (ITDR). You will define the architecture, ensure integration across systems, and guide implementation teams.

Architecture & Design

  • Define end-to-end architecture for:
    • CyberArk PAM (EPV, CPM, PSM) for privileged access control
    • Secrets Management (CyberArk Conjur + AWS KMS integration)
    • ITDR framework (identity telemetry, detection use cases, response policies)
  • Design secure integration with:
    • Network devices, applications, and APIs
    • AWS cloud services (EC2, KMS, ELB)
  • Review and approve High-Level Design (HLD) and Low-Level Design (LLD)

PAM (Privileged Access Management)

  • Architect onboarding of privileged accounts for network devices (SSH/Web)
  • Define password rotation, session monitoring, and connector strategy
  • Guide development/customization of CyberArk connectors
  • Ensure auditability and compliance of privileged access controls

Secrets Management (SM)

  • Design CyberArk Conjur architecture across multi-node AWS deployment
  • Define integration with AWS KMS, ELB, and application workloads
  • Lead migration strategy (Amazon Linux 2 AL2023)
  • Ensure secure secrets lifecycle across DevOps and application layers

ITDR (Identity Threat Detection & Response)

  • Define ITDR framework including:
    • Threat scenarios and identity threat library
    • Detection use cases and telemetry sources
    • Policies, KPIs, and response strategies
  • Align with industry frameworks (MITRE ATT&CK, NIST)
  • Design detection logic and abnormal behavior baselining

Governance & Advisory

  • Provide technical leadership across security workstreams
  • Lead workshops with stakeholders to align architecture and requirements
  • Ensure compliance with enterprise security standards and regulatory requirements
  • Advise on security best practices, scalability, and future-state architecture

Requirement

  • Bachelor's degree in Cybersecurity, Computer Science, or related field
  • 10–15+ years in cybersecurity architecture and implementation
  • Strong hands-on experience in:
    • CyberArk PAM (EPV, CPM, PSM, Conjur)
    • IAM / Identity Security domain
    • Cloud security (AWS preferred)
  • Experience in designing enterprise-scale security architecture
  • Strong knowledge of:
    • Identity-based attack patterns and detection
    • Security frameworks (NIST, ISO27001, MITRE ATT&CK)
  • Certifications preferred:
    • CISSP / CISM / CCSP
    • CyberArk certifications
  • Strong analytical, design, and stakeholder engagement skills

Or refer someone