Security Architect 

As a Security Architect, you will support security and compliance assessment activities across legacy and hybrid environments. You will evaluate security posture, configuration hardening, operational risk exposure, and compliance alignment, focusing strictly on screening, observation, and advisory outputs. This role does not include implementation, remediation, vulnerability assessments, or penetration testing.

What You’ll Do and How You’ll Succeed

Security and Compliance Screening

• Conduct security posture evaluations through privilege exposure reviews and read only analysis.
• Document configuration hardening observations and identify operational security risks.
• Validate license safe adherence for Oracle related components.
• Ensure all findings support structured risk identification and advisory outputs.

Data Protection and Privacy Compliance Review

• Ensure assessment activities comply with applicable data privacy and information security policies.
• Adhere to the Data Privacy Act of 2012 (RA 10173) where required.
• Ensure that no production data is exported outside controlled environments without proper authorisation.
• Follow execution guardrails and maintain compliance with assessment boundaries.

Operational Security Risk Identification

• Assess risks relating to legacy technology components, configuration practices, and infrastructure or application security posture.
• Document findings in the Evidence Register and the Risk Register.

Support Technical Debt Quantification

• Identify security related technical debt including end of life components, legacy authentication mechanisms, limited encryption posture, or outdated infrastructure.
• Document risks with impact analysis and cost of inaction considerations.

Governance and Compliance Controls

• Validate adherence to license safe protocol requirements, security guardrails, and approval processes for tools and scripts.
• Ensure that no unlicensed features are triggered.
• Ensure that no production data is exported.
• Ensure that all tools used have prior security approval.

Scope Limitations

The following are not part of this engagement:

• Vulnerability assessment
• Penetration testing
• Security remediation or implementation

Security responsibilities are limited to screening, observation, and advisory findings only.

We’d Love to Hear From You If…

Experience

• You have experience conducting security posture assessments in enterprise environments.
• You have worked on infrastructure and application security configuration reviews.
• You can identify risks in legacy technology stacks.
• You have experience in security governance and compliance practices.
• You have supported mission critical or legacy environments.

Technical Expertise

• You understand hybrid infrastructure security across on premise and cloud platforms.
• You can review security posture across Oracle 10g, Oracle Forms and Reports, Ruby on Rails components, and hybrid environments.
• You can analyse legacy security risks and document findings clearly in structured registers.

Ways of Working

• You follow strict assessment methodologies and compliance boundaries.
• You document findings clearly, accurately, and objectively.
• You collaborate effectively within cross layer assessment teams.

Assignment Details

• Employment Type: Contract
• Location: QC
• Work Setup: Onsite