Responsibilities:
Design and maintain enterprise security architecture based on industry frameworks (SABSA, TOGAF, NIST, Zero Trust).
Develop and document security models, including conceptual, logical, and physical architecture diagrams.
Define security requirements for new systems, applications, cloud services, and data flows.
Perform threat modeling and risk assessments for projects and solutions.
Evaluate security technologies (IAM, DLP, EDR, SIEM, WAF, CASB, SWG, ZTNA) and recommend suitable solutions.
Design secure network architectures, including segmentation, DMZ, micro-segmentation, and secure communication channels.
Architect cloudsecurity controls across IaaS, PaaS, SaaS using Azure, AWS, OCI best practices.
Develop data protection strategies, including encryption, key management, tokenization, and data classification.
Review solution designs and HLD/LLD to ensure compliance with security standards and frameworks.