What you will work on:

• Drive scalable, secure, and compliant security architectures across on-premises, cloud, and hybrid environments, with a focus on edge, containerized, and AI/ML solutions.
• Integrate security best practices into development, infrastructure, and operational processes, ensuring alignment with enterprise security standards and regulatory requirements.
• Design, review, and implement security architectures that address business needs, risk landscapes, and capability gaps.
• Define technical control requirements aligned with internal policies, industry standards (e.g., NIST CSF, SCF), and regulatory obligations.
• Develop reference security architectures for applications, infrastructure, identity, and endpoints in hybrid and cloud environments.
• Produce technical design documents, security standards, and implementation guides for platform and operations teams.
• Collaborate with infrastructure, SOC, platform, and application teams to embed security throughout the solution lifecycle.
• Mentor and guide teams in secure design principles and architectural best practices.
• Design and evaluate secure IoT and edge solutions, including device identity, provisioning, certificate lifecycle, sandboxing, and updates.
• Ensure secure and compliant handling of AI/ML data, including lineage, classification, encryption, and privacy.
• Champion DevSecOps practices across cloud-native and MLOps environments, including secure CI/CD pipelines, artifact integrity, and policy-as-code enforcement.
• Implement robust identity and access management strategies across cloud and device ecosystems, covering least privilege, conditional access, and workload identity.

What you bring:

• Strong experience in enterprise security architecture design for hybrid and cloud environments, covering compute, containers, storage, networking, platform services, APIs, and applications.
• Proven expertise in DevSecOps and secure software delivery across CI/CD pipelines and cloud-native platforms.
• Experience in IoT and edge security, including device identity, provisioning, certificate lifecycle, and sandboxing.
• Strong knowledge of identity and access management (IAM), including RBAC, PIM, MFA, and federation protocols (SAML, OIDC).
• Skilled in threat modeling and risk assessment for cloud, infrastructure, and application environments.
• Familiarity with cybersecurity frameworks and regulations such as NIST CSF, CIS Benchmarks, SCF, ISO/IEC 27001, and cloud-specific guidelines.
• Preferential experience with data security and governance for AI/ML workloads, including encryption, privacy, and secure access.
• Hands-on experience with security configuration and integration in IT/OT solutions, including edge, containerized, and AI/ML environments.
• Knowledge of network security, including segmentation, perimeter defenses, DNS/DHCP hardening, VPN, ZTNA, and modern firewall architectures.
• Ability to integrate and automate security tooling across enterprise environments.
• Strong technical documentation skills and experience developing security standards.
• Proven ability to mentor, lead, and influence teams by example.