Enterprise Cyber Security Solution Architect

Dice is the leading career destination for tech experts at every stage of their careers. Our client, Strategic Staffing Solutions, is seeking the following. Apply via Dice today!Enterprise Cyber Security Solution ArchitectLocationTampa Bay, FL (Hybrid)OverviewThe Enterprise Cyber Security Solution Architect is responsible for designing, maturing, and governing enterprise-wide cybersecurity solutions that protect critical information assets and infrastructure.This role serves as a solution architect and technical authority, defining future-state architectures, security standards, and multi-year roadmaps, while partnering with engineering teams, system integrators, and Managed Security Service providers (MSS) for execution and operations.The position provides architectural leadership across:Identity & Access Management (IAM/IGA)Privileged Access Management (PAM)Data Loss Prevention (DLP)Application SecurityPublic Key Infrastructure (PKI)Note: This is an architecture-focused role and does not involve hands-on implementation or day-to-day administration.Primary Duties & ResponsibilitiesIdentity Management & Identity Governance (IAM / IGA) - 35%Define and maintain IAM/IGA reference architectures, standards, and roadmaps aligned with Zero Trust and least privilege principlesProvide architecture leadership for Microsoft Entra ID (passwordless authentication, Conditional Access, SSO, identity federation)Architect and mature Saviynt IGA capabilities (RBAC, role catalog, entitlement management, access certifications)Design identity controls to mitigate BYOD risk using Conditional Access and device trust strategiesLead integrations with enterprise platforms (e.g., PAM tools, ITSM, ERP systems)Govern non-human/workload identities in coordination with IAM and PAM platformsPrivileged Access Management (PAM - CyberArk) - 25%Serve as the enterprise PAM solution architect and design authorityDefine and lead the PAM maturity roadmap (pilot enterprise rollout MSS transition)Architect advanced capabilities including:Privileged session recordingSecure credential accessJust-in-time (JIT) provisioningPrivilege reduction strategiesEstablish PAM architectures across on-prem, cloud, hybrid, and distributed environmentsProvide governance oversight to ensure scalable, secure, and compliant implementationsData Loss Prevention (DLP - Microsoft Purview) - 15%Lead architecture for enterprise DLP capabilitiesDefine data classification, labeling, and protection strategies across:EmailEndpointsCloud platformsData at restAlign DLP with IAM, Conditional Access, and data governance requirementsPartner with Legal, Compliance, and Risk teams to meet regulatory and privacy standardsApplication Security (Architecture & Secure SDLC) - 15%Define secure application architectures and secure coding standardsIntegrate security into the Software Development Lifecycle (SDLC)Provide guidance on authentication, authorization, and secure data handlingSupport security architecture reviews and risk assessments for critical systemsPKI & Certificate Management - 5%Provide governance for PKI and certificate lifecycle managementDefine standards for certificate issuance, renewal, revocation, and automationSupport certificate-based authentication and passwordless initiativesCyber Defense & Security Governance - 5%Contribute to architecture and governance of threat detection and response capabilitiesSupport development of security standards, policies, and control frameworksAct as a trusted advisor in security architecture and enterprise risk discussionsRelationshipsInternal:Information Security, Enterprise Architecture, IAM/IGA teams, Application Development, Infrastructure, Cloud, Risk, Compliance, Audit, Executive LeadershipExternal:System Integrators, Security Vendors, Managed Security Service Providers, Auditors, Industry Partners