Our client, a leading global private equity (PE) firm with over $80B in AUM, is seeking a full-time IT Cyber Security Architect (hybrid schedule of M-W onsite, Th-Fri remote) to build out and their security roadmap and provide technical expertise in the design, implementation, and maintenance of the firm's information security program.

This includes identifying, evaluating, protecting against, and reporting on information security risks globally in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the firm.

Job Responsibilities

• Drive the development, implementation, and monitoring of a strategic comprehensive enterprise information security and IT risk management program
• Provide expertise in cloud security, particularly in Microsoft Azure environments, and manage security across multi-cloud and hybrid scenarios
• Implement, review, and maintain strong access controls and identity roles within cloud and on-premises infrastructure
• Design and implement security solutions across various platforms, including identity and access management, data protection, network security, and threat protection
• Ensure compliance with industry regulations and standards, managing governance, risk, and compliance (GRC) frameworks
• Review security technologies, tools, and services and make recommendations to the broader security organization
• Conduct periodic security audits, penetration tests, and vulnerability assessments of the IT environment
• Conduct ad-hoc security operations, including incident response, threat hunting, and vulnerability management

Job Requirements

• 10 years of information technology and/or information security experience
• 5 years hands-on technical experience with Microsoft Azure and Office 365 cloud platform
• Proven implementation of cloud security models, particularly identity, network, and encryption
• Expertise in data governance, specifically data classification, data lifecycle management, and Data Loss Prevention (DLP) strategies
• Direct, hands-on experience or strong working knowledge of managing security infrastructure (e.g. firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and Micro-segmentation/Zero-trust technology)
• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (SAML, OAuth, OpenID) with special focus on authentication flow between cloud environments and on-prem to cloud
• Strong architectural and network security experience including understanding of encryption, secure communication, authentication, secure DNS, and network traffic analysis
• Familiarity with Microsoft Entra, Microsoft Defender, and Microsoft Purview compliance portal

Nice to Have's

• Experience with Crowdstrike, Wiz, Proofpoint, etc.
• Microsoft certifications, including SC-1001, SC-2002, SC-3003, SC-4004, SC-9005, and AZ-5006