1. Solution Architecture & Proposal Development
   • Develop end-to-end cybersecurity solution architectures that align with the client’s objectives, scope of services, and industry best practices.
   • Collaborate with internal business and technical teams to ensure all requirements for IAM, Threat Management, Security Services, GRC, Security Architecture, and Cyber Enablement are appropriately addressed.
   • Create architectural diagrams, technical narratives, and service delivery models (including follow-the-sun support where relevant) that clearly articulate the operational approach, methodologies, and transformation roadmap.
   • Ensure alignment with the client’s existing technology stack and operational processes, including integration with custom platforms
2. Technical Leadership & Advisory
   • Provide subject matter expertise in key domains:
     • IAM (including privileged access management, certificate management, authentication & federation, identity governance and administration).
     • Threat Management (SIEM, EDR, XDR, CASB, DLP) and extended detection and response strategies.
     • Security Services (Third-party risk assessments, red team exercises, vulnerability management, application security).
     • GRC (GRC tool management, regulatory compliance frameworks, governance assessments).
     • Security Architecture (firewall management, cloud security engineering, governance/reporting, asset management).
     • Cyber Enablement (attack surface monitoring, dashboards, data platform oversight).
   • Guide teams on best practices for operational efficiency, configuration management, and risk mitigation across multiple environments (on-premises, cloud, and hybrid).
   • Advise on technology transformation initiatives (e.g., planning for platform migrations, optimizing tool usage, designing for scalability and high availability).
3. Implementation & Delivery Collaboration
   • Collaborate with delivery teams to translate the proposed architecture into actionable implementation steps, ensuring consistency with the defined scope and SLAs.
   • Oversee or guide L1/L2 support processes, incorporating relevant escalation and troubleshooting procedures.
   • Ensure robust change management governance, particularly for certificate provisioning/deprovisioning, PKI/HSM management, firewall change reviews, and IGA platform modifications.
   • Work closely with the client’s stakeholders to deliver on continuous improvements, technology upgrades, and operational maturity, while meeting defined KPIs and reporting cadences.
4. Risk & Compliance Management
   • Design solutions in adherence to industry security standards and regulatory requirements (e.g., NIST, ISO 27001, HIPAA, PCI-DSS, or other frameworks relevant to the client’s sector).
   • Incorporate governance processes for consistent security assessments, audit readiness, and compliance reporting.
   • Champion secure development practices (SAST, DAST, container scanning, secrets detection) throughout the solution lifecycle.
5. Continuous Improvement & Thought Leadership
   • Serve as a thought leader within the organization, staying current on emerging threats, technology trends, and industry best practices.
   • Identify and recommend areas for process optimization, automation, and platform enhancements that align with the client’s transformation goals.
   • Collaborate with vendor partners to evaluate and recommend fit-for-purpose security tools and solutions.

• Educational Background: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.
• Certifications (strongly preferred): CISSP, CISM, or equivalent. Additional cloud security certifications (e.g., CCSP, AWS/Azure Security Specialty) or vendor-specific certifications are a plus.
• Technical Expertise:
  • Proven track record in architecting and delivering security solutions in one or more of the following areas: IAM, PAM, SIEM/EDR, CASB, DLP, GRC tools, cloud security engineering.
  • Demonstrable experience with multi-cloud or hybrid environments, including security services at scale.
  • Familiarity with firewall management, network segmentation strategies, and secure infrastructure design.
• Platform/Tools Experience:
  • Hands-on experience with Identity Governance platforms (Saviynt IGA or similar).
  • Experience with code scanning and DevSecOps pipelines (SAST, DAST, container scanning, OSS scanning, etc.).
• Leadership & Communication:
  • Ability to lead cross-functional teams, translating complex technical requirements into clear deliverables.
  • Strong stakeholder management skills, capable of effectively interfacing with executives, technical teams, and third-party vendors.
• Problem-Solving & Strategic Thinking:
  • Capable of analyzing large-scale, complex environments to identify risk, propose mitigations, and align solutions with business objectives.

• Experience supporting large global enterprises with follow-the-sun support models.
• Background in delivering managed security services with clear SLAs, reporting structures, and governance models.
• Prior exposure to advanced analytics for threat intelligence and security event correlation.
• Involvement in continuous improvement initiatives (e.g., automation, orchestration, or advanced integrations) for security operations.

• This role may require periodic travel to client locations for key stakeholder meetings, solution workshops, and project milestone reviews.
• Remote collaboration is expected with distributed teams, leveraging collaboration platforms for ongoing engagement.

Metasys Technologies is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identify, national origin, veteran or disability status.