Cyber Security Architect

Cyber Security Architect

Full Time - Salaried

Salary Range: $120,000 - $145,000

Job Summary:

We are seeking a skilled and strategic Cyber Security Architect to design, develop, and maintain the security architecture for the WIS organization’s networks and systems. This includes planning for everything from local area networks (LANs) and wide area networks (WANs) to cloud security and application firewalls. This role spans all areas of information security including identity, cloud, data, network, application, endpoint, email, and vulnerability management—with a strong emphasis on DevSecOps .

You will work cross-functionally with IT, development, cloud, and business teams to embed security into the technology ecosystem and lifecycle, ensuring comprehensive protection of enterprise assets.

Key Responsibilities:

Security Architecture & Strategy

• Develop and maintain enterprise security architecture and blueprints aligned with business goals, risk appetite, and regulatory requirements.
• Lead security design reviews and provide guidance on secure system and solution architectures.

Identity & Access Management (IAM)

• Design and govern IAM solutions including SSO, MFA, identity federation, PAM, and RBAC across hybrid environments.
• Ensure secure integration of IAM with on-prem, cloud, and SaaS platforms.

Cloud Security

• Define and implement security controls for IaaS, PaaS, and SaaS models across AWS, Azure, and/or GCP.
• Lead cloud security assessments, enforce policies through CSPM, CWPP, and CASB tools.

Data Security & Privacy

• Architect enterprise data protection strategies including encryption, DLP, masking, and secure data flows.
• Ensure security designs comply with data privacy regulations such as GDPR, HIPAA, and CCPA.

Network & Infrastructure Security

• Design secure network architecture including segmentation, firewalls, micro-segmentation, VPN, and Zero Trust principles.
• Oversee infrastructure security across hybrid and distributed networks.

Application Security

• Drive application security architecture and governance across internal and third-party applications.
• Oversee the integration of SAST, DAST, RASP, and threat modeling into the software development lifecycle.

DevSecOps Integration

• Lead the implementation of DevSecOps practices to embed security in CI/CD pipelines.
• Develop and enforce security automation, secure code practices, and IaC security (Terraform, Helm, Ansible, etc.).
• Collaborate with development and platform engineering teams to build security as code and shift-left strategies.

Endpoint & Email Security

• Define endpoint protection architecture using EDR/XDR solutions and mobile threat defense.
• Design advanced email protection measures including phishing prevention, SPF/DKIM/DMARC, and secure email gateways.

Vulnerability & Threat Management

• Architect and manage end-to-end vulnerability management lifecycle, including scanning, assessment, remediation, and reporting.
• Collaborate with SOC and threat intelligence teams to proactively address emerging threats and exposures.

Qualifications:

Required:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• 7+ years of experience in cybersecurity, with 3+ years in a security architecture or engineering leadership role.
• Demonstrated experience across key security domains, especially with DevSecOps and cloud security.

Preferred Certifications:

• CISSP, SABSA, CISM, AWS/Azure Security certifications, GIAC (GCSA, GCPN, GDSA), TOGAF, or equivalent.

Key Skills:

• Strong knowledge of security architecture frameworks (e.g., SABSA, NIST, Zero Trust).
• Practical experience with DevSecOps tools: SAST/DAST, container security (Kubernetes, Docker), IaC scanning, CI/CD security integration.
• Expertise in modern security platforms and controls: IAM, EDR/XDR, SIEM, CASB, DLP, cloud-native security tools.
• Effective communication skills with both technical and business stakeholders.

Working Conditions:

Work is primarily sedentary: must be able to sit for extended periods of time, use a keyboard and mouse, frequently.

Please note that this Job Description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Under the Americans with Disabilities Act (ADA), WIS is committed to providing reasonable accommodations to qualified individuals with disabilities to enable them to effectively perform the essential functions of the job.

For more information on WIS, visit our website at

WIS is an Equal Opportunity Employer,

committed to a diverse and inclusive work environment.