Key Responsibilities
- Cybersecurity Architecture & Solution Design
- Lead the design of enterprise cybersecurity architectures, covering cloud, network,
identity, data, endpoint, and application security domains.
- Develop HLDs/LLDs, architecture diagrams, reference models, and security patterns
- Assess existing customer environments and build target-state architectures aligned with
business/security objectives.
- Define Zero Trust architecture blueprints, identity models, segmentation strategies, and
detection structures.
- Presales, RFP, and Proposal Support
- Support presales teams in opportunity qualification, customer workshops, and technical
discovery.
- Lead the creation of technical proposals, RFP responses, SoWs, BOMs, and solution
write-ups.
- Provide solution presentations, demonstrations, and technical clarifications to
stakeholders.
- Delivery & Implementation Oversight
- Guide delivery teams (engineering/consulting) in implementing designed architectures
- Participate in complex solution deployments to ensure alignment with architectural
principles.
- Conduct architecture reviews, gap analysis, and compliance assessments
- Customer Engagement & Advisory
- Act as a trusted advisor to CISO, IT security leaders, and enterprise architecture teams
- Support cybersecurity strategy development, roadmap creation, and maturity
improvement initiatives.
- Provide technical leadership during critical incidents or escalations
- Governance, Compliance & Risk
- Ensure architectures align with KSA regulatory frameworks:
NCA ECC/CCC
SAMA CSF
CST Cybersecurity Framework
- Map architectures to industry standards such as NIST CSF, ISO 27001, CIS Controls,
and cloud best practices.
Mandatory Technical Expertise
Candidates must have broad and deep expertise in at least 4-5 of the areas below:
Microsoft Security Architecture (Mandatory)
Microsoft Sentinel
Microsoft Defender XDR (Endpoint, Identity, Cloud, Office 365)
Microsoft Entra ID (PIM, Conditional Access, Identity Protection)
Microsoft Purview (Data Security & Compliance)
Azure Security Architecture
Azure Landing Zones, Policies, RBAC, and secure cloud governance
Identity & Access Management (IAM / IGA / PAM)
OKTA
SailPoint
BeyondTrust
IBM Security Verify
Network & Infrastructure Security
Palo Alto Networks
Fortinet
Cisco Security
Segmentation, micro-segmentation, Zero Trust architectures
SOC & Threat Detection
SIEM/XDR design
Use case development
Threat hunting frameworks
SOAR playbooks
Cloud Security
Azure (mandatory)
AWS or GCP (optional but preferred)
Cloud-native architecture and security tooling
Data, Application & DevSecOps
Secure SDLC
API security
CI/CD pipeline security
Container/Kubernetes security (AKS, EKS)
Certifications (Required & Preferred)
Required (one or more):
SC100 (Cybersecurity Architect Expert)
AZ500 (Azure Security Engineer)
SC200 (Security Operations Analyst)
CISSP or CISM
Preferred:
SABSA (Foundation or Practitioner)
CCSP
SC300
GIAC certifications (GCIH, GCIA, GCLD, GCFA)
Vendor certifications (Palo Alto, Fortinet, OKTA, SailPoint, BeyondTrust)
Experience Requirements
8-12 years in cybersecurity engineering & architecture roles
At least 3+ years working as a solution architect or security architect
Experience designing and supporting large-scale enterprise or government cybersecurity
solutions
Strong presales and customer-facing experience
