Job Description

Senior Security Architecture Review Engineer

Position Summary

We are seeking a highly skilled and experienced Senior Security Architecture Review Engineer to evaluate, design, and enhance secure architectures across enterprise, cloud, telecom, and OT environments. This role is critical for identifying architectural weaknesses, ensuring secure system integration, and guiding engineering teams toward secure-by-design implementations. The ideal candidate possesses deep expertise in security engineering, network architecture, and secure design methodologies, with a strong focus on proactive threat mitigation.

Key Responsibilities

Security Architecture & System Review:

Conduct comprehensive reviews of IT, OT, cloud, and hybrid system architectures, analyzing network diagrams, data flows, and authentication models for security vulnerabilities. Perform threat modeling (STRIDE, PASTA, LINDDUN) for new and existing systems and evaluate third-party and vendor products for secure integration and compliance.

Secure Design & Integration:

Define and maintain secure architecture standards and reference designs, reviewing segmentation strategies for IT/OT networks, zero-trust implementations, and identity architectures. Ensure alignment with frameworks such as NIST CSF, ISO 27001, CIS Controls, IEC 62443, and cloud security best practices.

Collaboration & Support:

Provide expert security guidance to DevOps, cloud, engineering, and infrastructure teams, proactively identifying and addressing security concerns throughout the development lifecycle.

Documentation & Governance:

Produce clear and concise architecture assessment reports, risk findings, remediation plans, and design recommendations. Contribute to Security Architecture Review Board (SARB) activities and participate in change management processes to ensure secure deployments.

Required Qualifications

Bachelor's or Master's degree in Cybersecurity, Computer Engineering, or a related field.

7+ years of progressive experience

in security architecture or security engineering.

Strong Expertise (Required):

Network security (firewalls, segmentation, NAC, VPN, load balancers) Cloud (AWS, Azure, GCP) security architecture Identity & Access Management (IAM / PAM) Experience with OT/ICS architecture is highly desirable. Hands-on experience in security risk assessments and architecture reviews. Proven ability to effectively communicate complex technical concepts to both technical and non-technical audiences.

Preferred Certifications

CISSP (required within 1 year of hire) CCSP SABSA, TOGAF, GICSP Cloud architect certifications (AWS/Azure/GCP)

Key Competencies

Strong analytical and design-thinking skills with a proactive problem-solving approach. Excellent documentation and communication abilities, including the ability to create clear and concise reports and presentations. Ability to collaborate effectively with cross-functional technical teams and influence stakeholders. * Deep understanding of modern enterprise and cloud architectures and security best practices.