Job Description
Title: Enterprise Security Architect
Visas: USC/GC only
Need LinkedIn, VISA DL
Location: Newark NJ 07102 (3 days onsite and 2 days remote)- Locals only
Need LinkedIn, VISA DL
Hybrid role
Role Purpose
Define enterprise security architecture standards, create security patterns and frameworks, establish security controls by tier, and provide the security templates that enable secure-by-design solutions. This role creates security patterns and standards, not operational security implementation.
What Makes This Role Unique
- Policy translator: Convert InfoSec policies into practical architectural patterns solution architects can apply
- Security-by-tier architect: Define exactly what security controls are required for each application tier (Tier 0/1/2/3)
- Zero-trust strategist: Lead the enterprise adoption of zero-trust architecture through patterns and templates
- Strategic partnership: Bridge between architecture and operational security (InfoSec team)
Key Responsibilities
Enterprise Security Standards & Patterns (40%)
- Define security architecture reference architectures (zero-trust, defense-in-depth)
- Create security patterns library (authentication and authorization patterns, API security patterns, data protection patterns, network security patterns, application security patterns)
- Establish security controls by application tier (Tier 0: HSM, 24/7 SOC, multi-region DR; Tier 1: MFA, encryption at rest/transit, WAF; Tier 2/3: standard security controls)
- Define identity and access management (IAM) patterns
- Document encryption and key management standards
- Create secrets management patterns
Security Frameworks (30%)
- Build secure design templates for common patterns (web apps, APIs, microservices)
- Develop threat modeling framework (STRIDE, PASTA templates)
- Create security testing framework (SAST, DAST, penetration testing standards)
- Establish DevSecOps patterns and shift-left security standards
- Define security compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA patterns)
Security Architecture Governance (20%)
- Review solution architectures for security pattern compliance
- Conduct threat modeling for strategic initiatives
- Define security architecture review criteria
- Translate InfoSec policies into architectural patterns
- Establish security exception process
Enablement (10%)
- Train solution architects on security patterns
- Conduct secure design workshops
- Maintain security pattern catalog
- Partner with InfoSec on security requirements
Required Qualifications
Education:
- Bachelor's degree in Computer Science, Information Security, or related field
Experience:
- 7+ years in security architecture, enterprise architecture, or cybersecurity
- 5+ years creating enterprise security standards and patterns
- Proven experience with zero-trust architecture and secure design patterns
- Experience establishing security controls frameworks and compliance patterns
- Track record conducting threat modeling and security architecture reviews
Certifications (Required/Preferred):
- CISSP (Certified Information Systems Security Professional) – required
- TOGAF certification – preferred
- SABSA certification – preferred
- Cloud security certification (AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer) – preferred
- CISM or CISA – preferred
Kind Regards,
Deep Patel
Sr. Technical Recruiter
ZealHire Inc.
14 Wall Street 20th Floor | New York, NY 10005
