Job Title

Our client, a leading global private equity (PE) firm with over $80B in AUM, is seeking a full-time IT Cyber Security Architect (hybrid schedule of M-W onsite, Th-Fri remote) to build out and their security roadmap and provide technical expertise in the design, implementation, and maintenance of the firm's information security program.This includes identifying, evaluating, protecting against, and reporting on information security risks globally in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the firm.Job ResponsibilitiesDrive the development, implementation, and monitoring of a strategic comprehensive enterprise information security and IT risk management programProvide expertise in cloud security, particularly in Microsoft Azure environments, and manage security across multi-cloud and hybrid scenariosImplement, review, and maintain strong access controls and identity roles within cloud and on-premises infrastructureDesign and implement security solutions across various platforms, including identity and access management, data protection, network security, and threat protectionEnsure compliance with industry regulations and standards, managing governance, risk, and compliance (GRC) frameworksReview security technologies, tools, and services and make recommendations to the broader security organizationConduct periodic security audits, penetration tests, and vulnerability assessments of the IT environmentConduct ad-hoc security operations, including incident response, threat hunting, and vulnerability managementJob Requirements10+ years of information technology andor information security experience5+ years hands-on technical experience with Microsoft Azure and Office 365 cloud platformProven implementation of cloud security models, particularly identity, network, and encryptionExpertise in data governance, specifically data classification, data lifecycle management, and Data Loss Prevention (DLP) strategiesDirect, hands-on experience or strong working knowledge of managing security infrastructure (e.g. firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and Micro-segmentationZero-trust technology)Working knowledge of common and industry standard cloud-nativecloud-friendly authentication mechanisms (SAML, OAuth, OpenID) with special focus on authentication flow between cloud environments and on-prem to cloudStrong architectural and network security experience including understanding of encryption, secure communication, authentication, secure DNS, and network traffic analysisFamiliarity with Microsoft Entra, Microsoft Defender, and Microsoft Purview compliance portalNice to Have'sExperience with Crowdstrike, Wiz, Proofpoint, etc.Microsoft certifications, including SC-1001, SC-2002, SC-3003, SC-4004, SC-9005, and AZ-5006