About the role
Job Description Summary
We are seeking a Principal Cybersecurity Architect – Application & Data to serve as a senior technical leader responsible for securing enterprise applications, data platforms, and digital services across cloud and hybrid environments. This role will partner with application teams, data engineering, and platform teams to ensure that security is built into application design, development, and data lifecycle management from inception. The architect will play a critical role in enforcing secure-by-design principles, supporting architecture reviews (e.g., BASE), and defining enterprise security patterns for modern application stacks. You will lead the development of security strategies for enterprise applications, APIs, SaaS platforms (including M365), and data platforms such as Databricks, while ensuring alignment with enterprise policy, regulatory requirements, and Zero Trust principles.Job Description
Key Responsibilities
Application Security Architecture & Governance
- Lead security architecture reviews for enterprise applications, APIs, and SaaS integrations to ensure alignment with security standards and policies
- Identify risks, control gaps, and non-compliant patterns across application and integration architectures
- Define required application security controls across the SDLC
- Provide architecture approvals, conditional approvals, and remediation guidance
- Publish Risk Assessment Reports that include threats and mitigating controls aligned to GEV policies and standards.Data Security & Platform Protection
- Define security architecture for data platforms (e.g., Databricks), data lakes, and analytics environments
- Establish controls for data classification, encryption, access governance, and secure data sharing
- Ensure protection of sensitive data (PII, confidential, regulated) across storage, processing, and transmission