Principal, Security Architect

Ready to be a Titan? We are looking for a visionary Principal Security Architect to serve as the master designer of our digital defense spanning disciplines of Product Security, Corporate Security, and Risk Management. You will balance cutting-edge innovation with uncompromising protection, ensuring our infrastructure is resilient by design rather than by reaction. You will lead security architecture efforts for flagship customer-facing initiatives and partner closely with technical and business leaders to make a lasting impact. By integrating with delivery teams as a Subject Matter Expert, you will provide detailed consultation to ensure software solutions are secure, scalable, and adhere to industry-leading security standards. What You’ll Do: Architect and Enforce Secure Cloud Native Guardrails Security as Code and Platform Guardrails: Design and implement enforceable security controls directly into Infrastructure as Code, CI CD pipelines, and cloud control planes. Define reusable, opinionated reference patterns that bake in least privilege IAM, secure defaults, encryption standards, workload identity, network segmentation, and tenant isolation across AWS, Azure, or GCP. Ensure guardrails are preventative by default rather than detective after deployment. Secure SaaS Architecture and Isolation: Own and evolve security reference architectures for multi tenant customer facing platforms, including API security, strong service to service authentication, authorization boundaries, secrets management, and blast radius containment. Embed data level protections and isolation controls that scale with product growth. Automated Architecture Assurance: Institutionalize automated architecture reviews through policy as code, static analysis, and runtime controls that continuously validate alignment with Zero Trust principles, regulatory requirements, and internal security standards. Replace manual review bottlenecks with scalable, measurable security enforcement. Design and Modernize Corporate Security Controls Workforce Identity and Just in Time Access: Design and implement modern workforce identity architecture grounded in Zero Trust principles. Develop and mature just in time and just enough access strategies across SaaS applications, cloud administration, and internal systems. Reduce standing privilege through automated provisioning, strong authentication, device trust, and continuous access evaluation. Endpoint and Device Security Strategy: Evaluate, test, and recommend endpoint detection, response, and hardening controls across macOS, Windows, and mobile platforms. Define secure configuration baselines, telemetry standards, and device posture requirements that meaningfully reduce lateral movement and credential theft risk. Continuously assess control efficacy through validation testing and measurable risk reduction. Security Orchestration and Automation: Identify and implement automation opportunities across identity, endpoint, and security operations workflows. Architect integrations between IAM, EDR, MDM, SIEM, and ticketing platforms to eliminate manual processes, accelerate containment, and improve signal to noise. Drive security as code and event driven enforcement across corporate systems. Control Assurance and Continuous Improvement: Establish mechanisms to test and validate corporate security controls through simulation, access reviews, configuration audits, and adversary emulation. Translate findings into architectural improvements that harden the enterprise environment while maintaining workforce productivity. Strategic Advisory and Governance Executive Consultancy: Act as the primary security consultant for executive leadership, translating complex cyber threats, regulatory requirements, and risk posture into actionable architectural guidance. Risk-Based Trade-offs: Lead risk-based trade-off discussions regarding security, privacy, usability, and delivery, documenting key decisions and rationale to help teams move quickly ... (truncated, view full listing at source)