Senior Cybersecurity Architect - Implementation

Codeninja

About the Role

We are seeking a Senior Cybersecurity Architect to support the implementation and operationalization of cybersecurity across one of the largest banks in Saudi Arabia. The role sits within the Architecture Unit and focuses on embedding cybersecurity into business processes, technology delivery, and operational change activities. This is a hands-on, delivery-driven role, requiring active participation in change management processes, including review of business requirements, solution changes, and production-impacting activities, to ensure cybersecurity requirements are consistently addressed before and during implementation.

Key Responsibilities

Cybersecurity Implementation & Business Integration

• Lead the implementation of cybersecurity controls and architectures across business and technology domains.
• Embed cybersecurity requirements into:
• Business processes
• Application and infrastructure delivery lifecycle
• Operational and production change activities
• Collaborate closely with business, IT, and security teams to ensure security is built-in, not bolted-on.

Change Management & Requirements Review

• Actively participate in formal change management processes, including:
• Reviewing and assessing technology and infrastructure changes
• Conducting security impact analysis for standard, normal, and emergency changes
• Providing input for change approvals to ensure security risks are identified and mitigated
• Review and assess Business Requirement Documents (BRDs), functional specifications, and solution designs to ensure cybersecurity requirements are clearly defined and addressed.
• Validate that approved security requirements are effectively implemented during change execution.

Architecture & Control Operationalization

• Translate cybersecurity policies, standards, and regulatory requirements into implementable security architectures, patterns, and control designs.
• Define and enforce:
• Security reference architectures and patterns
• Baseline security configurations
• Defense-in-depth and zero-trust models
• Ensure security architectures are consistently adopted and executed across projects and change initiatives.

Hands-On Security Design & Delivery

• Design, review, and oversee the implementation of security controls, including:
• Firewalls, WAF, IDS/IPS, and DDoS protection
• Secure Email Gateways and API Security Gateways
• VPN, SD-WAN, and Network Access Control (NAC)
• Endpoint Security, EDR/XDR
• Identity and Access Management (IAM)
• SIEM and centralized logging platforms
• Drive system, platform, and cloud hardening across operating systems, databases, virtualization platforms, containers, and cloud services.

Cloud, Platform & Infrastructure Security

• Implement and standardize security controls across hybrid environments (on-premises, private cloud, and public cloud OCI / Azure / GCP).
• Secure virtualized and containerized platforms (VMware, Hyper-V, Kubernetes, OpenShift).
• Integrate cloud-native and third-party security services into enterprise platforms.

Security Operations Enablement

• Collaborate with SOC and operations teams to ensure security controls are monitorable, operable, and effective.
• Integrate SIEM and SOAR capabilities to support detection, response, and continuous improvement.
• Support incident investigations and ensure lessons learned are incorporated into control and architecture improvements.

Risk, Compliance & Assurance

• Ensure cybersecurity implementations align with regulatory and industry standards, including:
• SAMA CSF
• NCA ECC
• SWIFT CSP
• PCI DSS
• NIST
• Produce implementation-focused, audit-ready documentation, including:
• Solution and implementation designs
• Architecture diagrams and standards
• Control mapping, evidence, and change records
• Conduct threat modeling, risk assessment, and support mitigation measures.