Senior Security Architect JOB

Job Title: Senior Security Architect

Role Purpose:

Define, enforce, and improve DCT’s systems, infrastructure, and digital platforms security architecture through providing expert guidance to the technical teams and stakeholders to ensure that security is integrated into the design and operation of all IT solutions, systems, and platforms in alignment with DCT’s cybersecurity strategy and compliance requirements

Key Responsibilities:

Core Responsibilities:

• Design, maintain, and enforce security reference architectures and frameworks covering infrastructure, networks, cloud, applications, and data platforms.
• Collaborate with Enterprise and Solution Architects to review system designs and provide expert security recommendations ensuring robust and compliant implementations.
• Develop and review network and infrastructure security architectures, ensuring integration of advanced security controls and technologies.
• Provide guidance and oversight on core security tools and solutions, including SIEM, DLP, IAM, and firewalls, ensuring optimal configuration and effectiveness.
• Identify and propose solutions and projects to address identified vulnerabilities and gaps in infrastructure or business processes
• Conduct regular audits of security controls, assess compliance with relevant frameworks (e.g., NIST, ISO 27001), and report findings and improvements to senior leadership.
• Lead and support security awareness initiatives and training programs across the organization
• Support the continuous development of DCT’s cybersecurity strategy, policies, standards, and procedures to align with evolving threats and business needs
• Develop and share reusable design patterns, control frameworks, and security blueprints to support to secure application development and system integration

Shared Activity:

• Ensure effective cascading of the functional strategy into business plans to ensure vertical alignment and horizontal integration with other interfacing sectional strategies.
• Lead the identification of opportunities for continuous improvement and sustainability of systems, processes and practices considering global standards, productivity improvement and cost reduction.
• Carry out any other duties and responsibilities related to the role at the request of the direct manager.
• Manage and ensure effective implementation of functional policies, procedures and controls covering all areas of assigned section activity so that all relevant procedural/legislative requirements are fulfilled while delivering a quality, cost-effective service.
• Follow all relevant departmental policies, processes, standard operating procedures, and instructions so that work is carried out in a controlled and consistent manner.
• Demonstrate compliance to organization’s values and ethics at all times to support the establishment of a value drive culture within the organization
• Contribute to the identification of opportunities for continuous improvement and sustainability of systems, processes and practices considering global standards, productivity improvement and cost reduction.
• Adhere to the DCT Occupational Safety and Health policy, regulations, and laws, and provide help to the Corporate EHS in executing the OSHMS.
• Report any incidents, near misses, occupational illnesses, unsafe practices, and conditions immediately to the concerned person and participate in the investigation of OSH incidents, as required.

Communication and Business Relationships:

Internal

• Technology Internal Sections
• Information Security Section
• DCT Relevant Sectors / Departments

External

• Government entities
• Service Provider & Consulting firms 
• Any other relevant external entity

Qualifications :

• Bachelor’s Degree (master’s degree Preferred) in Computer Science, Information Security or equivalent.
• Relevant certifications such as CISSP, CISM, SABSA, TOGAF (with a focus on security), or similar.

Experience:

• 3 to 5 years of experience in information security, security architecture or any relevant role

Skills:

• Language: full professional English and Arabic proficiency both in speaking and writing
• Skilled in MS Office (PowerPoint, Word and Excel)
• In-depth knowledge of enterprise security architecture, network and infrastructure security, application security, cloud security, and risk management.
• Hands-on experience with enterprise security tools and technologies (e.g., SIEM, DLP, IAM, firewalls, vulnerability management).
• Strong understanding of security frameworks and standards (e.g., NIST, ISO/IEC 27001, COBIT).
• Excellent communication and stakeholder management skills, with the ability to articulate complex security topics to technical and non-technical audiences.
• Self-motivated with a proven ability to complete work in a timely manner
• Ability to multi-task and to prioritize work effectively
• Ability to work under own direction and high degree of initiative