Enterprise Information Security Architect

We are seeking a highly skilled Information Security Architect with extensive expertise in Windows Active Directory (AD), Azure Entra ID, Windows security, and Group Policy Object (GPO) design. In this role, you will architect and lead the implementation of secure, scalable solutions across our enterprise IT landscape.

The Enterprise Information Security Architect is placed in the Enterprise Security team, headed by the CISO.

As our Information Security Architect, you will be responsible for designing and implementing secure architectural frameworks that protect our organization’s digital assets. You will work closely with Line of Business, compliance, and operations teams to develop and enforce robust security strategies, ensuring that our systems—both on-premises and cloud-based—are resilient, compliant, and aligned with business objectives.

Your responsibilities:

• Architectural Design & Strategy:
• Develop and maintain the overall security architecture and design principles to align with business goals.
• Create comprehensive security architecture blueprints and roadmaps for both on-premises and cloud environments.
• Lead design reviews and recommend improvements to enhance resiliency and scalability.
• Windows Active Directory & Azure Entra ID Architecture:
• Architect secure Windows AD environments, ensuring integrity, confidentiality, and availability of directory services.
• Design and implement Azure Entra ID solutions for robust identity and access management.
• Develop strategies for integrating on-premises and cloud-based identity solutions to support hybrid environments.
• Windows Security & GPO Architecture:
• Design secure configurations and policies for Windows systems, leveraging industry best practices.
• Architect and manage Group Policy Objects (GPOs) to enforce security settings and regulatory compliance across the organization.
• Continuously evaluate and refine security configurations to mitigate risks and address emerging threats.
• Risk Assessment & Security Innovation:
• Lead comprehensive security risk assessments and vulnerability analyses, offering architectural solutions to remediate identified issues.
• Develop innovative security solutions and controls to address evolving threats and regulatory requirements.
• Architect incident response frameworks to rapidly detect, contain, and remediate security breaches.
• Collaboration & Leadership:
• Collaborate with IT, network, and operations teams to integrate security architecture into overall IT frameworks.
• Provide strategic security insights and technical guidance to stakeholders at all levels.
• Mentor and guide team members, fostering a culture of security awareness and continuous improvement.
• Monitoring, Reporting & Compliance:
• Establish frameworks for continuous monitoring of security architectures and systems.
• Produce detailed documentation and reports on security controls, risk assessments, and incident response metrics.
• Ensure all architectural solutions comply with industry standards and regulatory requirements (e.g., GDPR, NIS2, CIS18).

Your qualifications and experience:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
• Advanced certifications such as CISSP, CISM, CCSP, or Microsoft Certified: Identity and Access Administrator Associate are highly preferred.
• Minimum of 5 years of experience in information security with a focus on architectural design and implementation.
• Extensive hands-on experience with Windows Active Directory, Azure Entra ID, and GPO design in complex enterprise environments.
• Proven track record in developing secure architectures and mitigating security risks at scale.
• Deep expertise in Windows operating systems security, Active Directory design, and user/group management.
• Advanced skills in designing and implementing Group Policy Objects (GPO) for enforcing security policies.
• Strong understanding of cloud security best practices, particularly within Microsoft Azure environments.
• Knowledge of network security, encryption technologies, and identity management frameworks.
• Strong analytical and problem-solving abilities.
• Strong project management skills.
• Excellent communication skills, with the ability to translate complex technical concepts into business insights.
• Proven ability to work collaboratively in a fast-paced, dynamic environment.
  
  
  

Preferred Attributes

• Experience designing hybrid environments that integrate on-premises and cloud-based systems.
• Deep understanding of regulatory compliance standards such as GDPR, NIS2, CIS18.
• A proactive mindset with a passion for staying ahead of emerging security threats and industry trends.
  
  
  

Join us in our mission to build secure, innovative IT solutions that protect our organization’s digital landscape. Your expertise will be crucial in shaping the future of our security architecture.