Principal Security Architect Job Description
Principal security architect
provides technical advice on implementation of security controls across corporate and business systems such as ISO 27001 and PCI DSS controls.
Principal Security Architect Duties & Responsibilities
To write an effective principal security architect job description, begin by listing detailed duties, responsibilities and expectations. We have included principal security architect job description templates that you can modify and use.
Sample responsibilities for this position include:
Monitors current and future security trends, technology and information that will positively affect products and services applies and integrates emerging technological trends to new and existing systems architecture
Applies new and innovative ideas to old or new problems
Manage a small team, undertaking the design of security aspects of solution, including organisational structure, security processes, technical subskills and components, implementation and integration
Position the cyber security architecture program as the lifeline for all information security functions and develop inputs/outputs and processes for integrating with various groups like security strategy, security consulting, risk assessment, security detection and incidence response
Provide technical and security expertise to IT and business teams to identify security technology solutions and develop security reference architectures and strategies to achieve business results
Develop a strong working relationship with the customer’s technical staff and be able to gain their trust and credibility through his/her deep Security technical knowledge and subject matter expertise
Be the liaison between customers and product teams for Security requirements/enhancements
Work closely with other Solution Architects to align the security requirements and the solution design with the customers’ business drivers and demonstrate unique value
Function as cyber security thought leader, and owner for all aspects of security lifecycle in
Delivery - Engagements will include migration of existing applications and development of new applications using AWS cloud services
Principal Security Architect Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Principal Security Architect
List any licenses or certifications required by the position: CISSP, GIAC, CISM, GCIH, GCIA, PMP, CCIE, CEH, TCP/IP, CCDP
Education for Principal Security Architect
Typically a job would require a certain level of education.
Employers hiring for the principal security architect job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Business, Technical, Information Systems, Information Technology, Education, Cyber Security, Architecture, Information Security
Skills for Principal Security Architect
Desired skills for principal security architect include:
Cloud computing technologies and workload transition challenges
FISMA and FedRAMP
Operational security implementation and management
Network Architecture and Network Topology
Network security standards and their implementation in compliance to corporate security policies
ISO 27001/27001
Industry standards and methodologies
MITRE ATT&CK Framework
PCI DSS
How threats
Desired experience for principal security architect includes:
Demonstrated interpersonal skills, including conflict resolution
Demonstrated working knowledge and experience with security objectives, operational objectives, and tradeoffs associated with the network design process
Demonstrated working knowledge and experience with network access, identity and access management, and access authentication methods
Demonstrated working knowledge and experience with network protocols such as TCP/IP, UDP, DHCP, DNS, and HTTP
Knowledge of cryptology and encryption algorithms (e.g., IPSEC, AES, GRE, IKE, MD5, SHA, 3DES)
Demonstrated working knowledge and experience with the implementation of data security standards / guidance and regulatory / contractual information security requirements
Principal Security Architect Examples
1
Principal Security Architect Job Description
Job Description Example
Our innovative and growing company is hiring for a principal security architect. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for principal security architect
- Applying evolving technologies, techniques, and frameworks to create and deliver cloud solutions for the Bank
- Responsible for identifying and migrating appropriate legacy applications to cloud tools and processes
- Analyze user needs to determine functional requirements and define problems and develop plans and requirements for complex systems related to systems architecture
- Analyzing the security robustness of current solutions proposals for new products and technologies
- Drive the strategic rationalization of functionality and user experience/UI across our existing and new products and services
- Aid in the creation of strategic IT projects' design processes
- Lead contributor on the design of enterprise Information Security initiatives
- Solve complex, critical data security problems related to significant and unique application issues
- Stay current and knowledgeable of cutting edge Information Security tools and evaluate how they can bring benefit
- Plans and designs security architecture and solutions by evaluating network and security technologies
Qualifications for principal security architect
- Ownership and development of the Aviation product security roadmap
- Hands on experience with the remediation of security vulnerabilities
- Must have well developed change management skills
- Demonstrated knowledge of security industry standards and leading practices
- Must be able to simplify security and technical concepts for laypersons within our business and technology teams
- Exposure to security systems and process with a background in travel industry a plus
2
Principal Security Architect Job Description
Job Description Example
Our company is looking for a principal security architect. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for principal security architect
- Planning security systems by evaluating cloud and security technologies
- Evaluate, recommend, and provide technical leadership for the implementation of security measures to protect information systems, networks, and data
- Contribute security expertise to discussions and planning for overall IT architecture for the University, ensuring security is a foundational concept
- Provide security domain expertise and leadership for distributed campus IT security managers
- Primary responsibility for designing and implementing a security analytics program
- Future responsibilities will likely include supervision of team members
- Gaining an understanding of our Current State and Target State Architecture and then working to define a strategy for our technical direction
- Develop Security Architecture for highly scalable and fault-tolerant networks and environments that adhere to expected standards and discipline from a security posture
- Work directly with project development teams to enable successful project implementation applying the recommended security tools, technologies and techniques
- Firewalls and contextually aware firewalls (NGFW)
Qualifications for principal security architect
- The ideal candidate has experience working with automation script languages such as Puppet, Chef, Cloud Formation
- The ideal candidate is heavily involved in the security community and specific third party groups such as CSA
- A successful track record and at least 10 years of experience in technology and information security
- At least 3 years of experience being responsible for reviewing, recommending, implementing, and supporting security solutions
- Previous senior advisory role in medium- to large- enterprise Information Technology organization
- Demonstrated knowledge of recognized security industry standards and leading practices (e.g., PCI, OWASP, NIST CSF)
3
Principal Security Architect Job Description
Job Description Example
Our growing company is hiring for a principal security architect. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for principal security architect
- Monitoring Infrastructure - network capture/data aggregation/deduplication/filtering
- Traditional routing and switching (L2 & L3 from Cisco, Juniper and Arista)
- An understanding and basic knowledge of SDN and hybrid IaaS network / security technologies
- Field, Business units and Technical teams to ensure that the most efficient solution is designed to meet business needs
- Gathers and understands client needs, finding key areas where technology leverage is possible to improve business processes, defines architectural approaches and communicates technology direction
- Acts as architectural lead on multiple projects
- Provide technical guidance on the deployment, configuration, and best practices of enterprise event correlation and management systems, geared towards, but not limited to, Security-relevant use-cases
- Provide strategic direction, based on appropriate risk-based decision making, to drive the direction of the core SIEM platform and other Security-relevant data sources
- Perform a lead role during the occurrence of complex security events and/or incidents
- Updates job knowledge by tracking and understanding emerging security practices and standards
Qualifications for principal security architect
- Broad understanding of how to conduct risk assessments and the associated methodologies involved in risk mitigation and the presentation of this work
- Able to effectively and constructively interact with other teams to accomplish business goals
- Review and evaluate products in light of emerging threats
- Consult with application development teams to understand and define security requirements
- Research industry trends and security practices in order to identify product gaps with product and sales teams
- Assist teams during feature and product design with logical architectural and design models for security
4
Principal Security Architect Job Description
Job Description Example
Our company is growing rapidly and is looking for a principal security architect. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for principal security architect
- Development, design and implementation of complex long-term security operations processes and technologies worldwide for Concur Technologies
- Evaluate and develop technical and process based approaches to security challenges
- Review existing infrastructure and services and make recommendations to improve the state of security
- Collaborates with the Virtual Architecture team in the secure design of infrastructure services
- Works with various teams to support the operationalization and management of policies to ensure a secure operational environment for Concur
- Participates in the Security Incident and Response Management processes and technologies and provides an effective response to Concur customers for computer security incidents or concerns
- Advises the support of internal IT and Hosting Operations in response to Security related incidents
- Participates in continuous improvement and efficiencies efforts beyond own scope of responsibility
- Research technology, processes and ROI factors and manage large scale projects related to security
- Experience working with past and present iterations of security technologies knowledge of emerging innovations and trends in areas which include but are not limited to
Qualifications for principal security architect
- Four (4) years information security experience as a subject matter expert working across two or more technology layers (e.g., application, network, platform, data)
- Four (4) years experience designing security architecture for current and emerging technology landscape (e.g., cloud, big data, devops)
- One (1) year experience working with business driven security architecture methodologies/frameworks (e.g., SABSA, OpenGroup ) or comparable certification
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other comparable security certification
- In depth experience with common information management systems
- Experience designing and implementing information security solutions with a focus on cloud technologies
5
Principal Security Architect Job Description
Job Description Example
Our company is hiring for a principal security architect. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for principal security architect
- Represents Security Platform in development and implementation of the overall global cloud architecture
- Expertise in constructing an enterprise security architecture across a diverse technical landscape and understanding of the threat landscape facing financial institutions
- Strong influencing and coaching skills and the ability to adapt style to explain new cyber protection technology ideas to other architects and security specialists
- Experience in multiple areas of IT Security Architecture, alongside delivery of complex multi-layered secure environments including on-premises, Cloud and 3rd party IT deployments
- The ability to influence and build trust of senior executive stakeholders
- The ability to balance the long-term "big picture" and short-term implications of individual decisions
- The ability to translate business needs into strategic requirements and to make recommendations on how best to achieve business outcomes through alignment of investment priorities
- A Bachelor's degree in business, or equivalent and extensive related experience
- Be the principal network and application security architect leading definition and change, reflecting customer provided security policy documents, operational objectives
- Provide input as required for customer review and development of security architecture and design plans
Qualifications for principal security architect
- Experience with a broad set of information security best practices and technologies (e.g., application security, risk management, data protection, encryption, identity and access management, logging and monitoring, network security, security governance, ) within cloud environments
- Good understanding of IAM and cloud use cases
- Knowledge and working experience of OATH 2.0, SAML 2.0 standards
- Previous project experience in implementation project with experience in leading a small to mid-sized team
- Experience in providing single sign-on to Cloud based applications
- Experience with various network and host-based information security technologies including firewalls, WAFs, intrusion/threat detection/prevention, data loss prevention, anti-malware, file integrity monitoring