Security Architect – SABSA

Job Title:
Security Architect – SABSA

Location:
Anywhere in India (Frequent Middle East Travel – Project-Based)

Experience:
8+ Years

Employment Type:
Full-time

About the Role

We are seeking a highly skilled
Security Architect
with deep expertise in
SABSA (Sherwood Applied Business Security Architecture)
to design and implement enterprise-wide security strategies and frameworks. The ideal candidate will be responsible for developing security architectures, ensuring alignment with business objectives, managing risks, and providing expert technical guidance to teams across multiple domains. This role involves
frequent travel to the Middle East
based on project requirements.

Key Responsibilities

1. Security Strategy & Architecture

• Develop and maintain enterprise-wide security architecture frameworks based on
  SABSA principles
  .
• Understand business objectives, translate them into security requirements, and design solutions accordingly.
• Ensure security architectures are robust, scalable, and adaptable to evolving business and technology landscapes.

2. Risk Management

• Conduct comprehensive risk assessments using
  SABSA's risk-driven approach
  .
• Identify, evaluate, and mitigate potential security threats to business operations, data, and systems.
• Define appropriate controls to manage business-specific risks effectively.

3. Policy, Standards & Compliance

• Develop, implement, and enforce
  security policies, procedures, and standards
  aligned with organizational and regulatory requirements.
• Ensure compliance with
  industry frameworks
  (ISO 27001, NIST, GDPR, etc.) and local regulations when applicable.

4. Technical Guidance & Collaboration

• Provide expert guidance to engineering, infrastructure, and business teams on security best practices.
• Collaborate with cross-functional teams to embed security within
  system architecture, software development, and IT operations
  .
• Conduct design reviews and approve security implementations across the enterprise.

5. Technology Evaluation & Integration

• Evaluate, recommend, and implement advanced
  security tools, frameworks, and platforms
  to strengthen organizational defenses.
• Stay updated on emerging threats, security trends, and innovations to proactively enhance security measures.

6. Business Alignment & Multi-Layered Architecture

• Ensure security strategies are
  aligned with business objectives
  and operational realities.
• Leverage SABSA's
  multi-layered security architecture
  approach, integrating business, information, technology, and operational perspectives.

Required Skills & Qualifications

• 8+ years
  of experience in
  Information Security Architecture
  , with at least
  3+ years
  of hands-on SABSA framework application.
• In-depth understanding of security principles, methodologies, and frameworks (
  SABSA, NIST, TOGAF, ISO 27001
  ).
• Proven experience with security technologies, including:
• Firewalls, IDS/IPS, DLP
• SIEM solutions
• Endpoint security, identity & access management (IAM), and cloud security tools
• Strong expertise in
  risk assessment, threat modeling, and security gap analysis
  .
• Experience in developing and implementing enterprise security policies, procedures, and standards.
• Excellent
  stakeholder management, communication, and presentation skills
  , with the ability to explain complex concepts to both technical and business audiences.
• Relevant certifications preferred:
  SABSA SCF, SABSA SCP, CISSP, CISM, or equivalent
  .

Why Join Us

• Opportunity to
  work on high-impact security projects
  across India and the Middle East.
• Exposure to
  cutting-edge security technologies
  and enterprise-scale architecture.
• Collaborate with cross-functional global teams and
  shape strategic security initiatives
  .
• Competitive compensation with project-based travel allowances.