The Security Architect will be responsible for the following activities:
1. Security Architecture Review
• Analyze the proposed architecture for Microsoft Fabric and Airflow ETL.
• Validate compliance with security control standards and regulatory requirements.
• Review system design, data flows, and integration points for potential vulnerabilities.
• Ensure that design does not introduce unnecessary cybersecurity risk
2. Risk Assessment
• Conduct a formal risk assessment, including:
• Threat modeling and risk identification.
• Impact and likelihood analysis.
• Prioritized mitigation recommendations.
• Document findings in a comprehensive risk assessment report.
3. Advisory & Collaboration
• Provide expert guidance to project teams on secure configurations, identity management, encryption, and monitoring.
• Participate in design review sessions and security workshops.
• Communicate risks and recommendations to stakeholders and leadership.
Deliverables
• Security Architecture Report: Detailed evaluation of the proposed implementation against security standards.
• Formal Risk Assessment Document: Includes identified risks, ratings, threat model, and recommended mitigations.
• Executive Summary: High-level overview for leadership highlighting critical risks and actions.
Security Architect Qualifications
• Minimum 7 years in security architecture or related roles.
• Expertise in cloud security and data engineering platforms (Microsoft Fabric, Airflow).
• Strong knowledge of security frameworks (NIST, ISO 27001) and risk assessment methodologies.
• Excellent communication and documentation skills.
• Preferred certifications: CISSP, CISM, Azure Security Engineer Associate.
Thanks and Regards ,