We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Spectraforce Technologies jobs

Senior Security Architect - SaaS / Cloud Platforms

Spectraforce Technologies
United States, Illinois, Chicago
May 18, 2026
Title: Senior Security Architect - SaaS / Cloud Platforms

Location: Chicago, IL or Phoenix, AZ Hybrid - Anchor Days: Tuesday - Thursday

Duration: 6 months

Additional Notes from HM:

SaaS Security Architecture Role

Overview of Team & Need

  • The client is based in Chicago and leads a team within Security Architecture
  • The team supports a SaaS Security Program focused on:

    • Improving the security posture of SaaS platforms used across the organization.


  • This program includes a cross-functional group from multiple teams.
  • This role will:

    • Represent security architecture
    • Perform security architecture reviews of SaaS platforms
    • Partner closely with the SaaS program team




Core Responsibilities

  • Assess the overall security posture of SaaS platforms currently in use
  • Conduct security architecture reviews (not implementation)
  • Identify:

    • Security gaps
    • Risks
    • Misalignments with frameworks


  • Provide advisory recommendations based on findings
  • Work across teams to:

    • Align with stakeholders
    • Communicate risks and solutions


  • Correlate findings across multiple domains (ex: identity + data + access)


Key Focus Areas (Cybersecurity Domains)

Top 3 Priority Domains

  1. Cloud Security
  2. Identity Security
  3. Data Security


Secondary Areas

  • Attack Surface Management
  • Security Operations / Logging (log ingestion, security logs)
  • API Security (important within identity ecosystem)


Expectation

  • NOT a deep SME in one domain
  • MUST have broad, well-rounded knowledge across domains
  • Ability to "connect the dots" across security domains


SaaS Environment

  • The client already uses hundreds of SaaS platforms
  • This role focuses on:

    • Existing platforms, not new implementations


  • No single SaaS platform expertise required
  • Work is platform-agnostic, focused on security posture evaluation


Frameworks & Compliance

Candidates must be familiar with:

  • NIST
  • CISA / Cloud Security Frameworks
  • GDPR
  • Other applicable regulatory requirements


Expectation

  • Ability to:

    • Map findings to frameworks
    • Justify risks using compliance standards
    • Explain why something is a gap using these frameworks




Collaboration & Stakeholders

This role requires strong collaboration with:

  • SaaS Program Team
  • Application / Platform Owners
  • Security Teams across domains
  • Third-Party Risk Team (involved in process)


Key Trait

  • Strong communication and stakeholder alignment skills are critical for success


Role Nature (Hands-on vs. Advisory)

  • Primarily:

    • Architecture & design review
    • Advisory-focused


  • NOT responsible for:

    • Managing SaaS platforms
    • Deep hands-on engineering work




Important Note

  • Prior hands-on experience is highly valued

    • Makes candidates more effective in architecture roles




Experience Requirements

  • 7+ years in cybersecurity
  • 3-4 years in architecture/design roles


Ideal Candidate Profile

  • Broad cyber experience across multiple domains
  • Strong ability to:

    • Correlate risks
    • Analyze complex environments
    • Provide strategic recommendations




Cloud Environment

  • Preference order:

    1. Azure (strongly preferred)
    2. AWS
    3. GCP




Note

  • Role is SaaS-focused, so:

    • Less emphasis on deep cloud-native engineering
    • More focus on overall security posture




Identity & Access Expectations

  • Understanding of:

    • Authentication & Authorization
    • SSO & Access Management
    • Human vs. Non-human identities
    • API security within identity ecosystems




Certifications

  • Preferred (not required):

    • CISSP
    • CCSP


  • Strong candidates without certs will still be considered


Financial Services Experience

  • Nice to have, not required


Location & RTO

  • Primary location: Chicago
  • Must comply with Return-to-Office requirements


Success in First 90 Days

  • Quickly develop ability to:

    • Understand multiple cybersecurity domains
    • Connect the dots across domains


  • Effectively:

    • Identify risks and gaps
    • Communicate findings to stakeholders


  • Build strong working relationships across teams
  • Demonstrate advisory mindset + architectural thinking



The Client is looking for an enthusiastic, innovative Security Architect to lead Security Architecture reviews specific to SaaS platforms.

Qualifications

  • Bachelor's degree in computer science or related discipline and experience in information security, or an equivalent combination of education and work experience.
  • Deep knowledge of cloud security, preferred experience in financial industry.
  • Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
  • Seven years of experience in the Information Security role. Three years of experience with cloud and/or technologies
  • CISSP, CSSP, CCNP/CCIE Security, or Cloud security certification preferred
  • Strong collaboration skills and analytical ability



Skill Level: Senior

Requirements/Responsibilities-

  • In-depth knowledge of various cybersecurity frameworks, standards, and SSDLC
  • Hands-on experience with management of SaaS platforms within enterprise environment
  • Knowledge related to third party cyber security due diligence and Risk Management
  • Experience working with identity management systems including Authentication, SSO, RBAC, privilege management, Microsoft Entra
  • Must be knowledgeable related to various security frameworks, compliance, and regulations including NIST, GDPR, SOC reports etc.
  • Experience working with Microsoft Azure, AWS, hybrid, and multi-cloud systems
  • Very good understanding of data security concepts including encryption, retention, classification
  • Knowledge related to Application security including OWASP, API security, SSDLC etc.
  • Understanding related to security and audit logs, SIEM integration, alerting, incident response plan, pen testing
  • Very good understanding related to the concepts related to Firewall, IPS/IDS, Proxy servers, WAF, App Proxy, APIM
  • Very strong understanding of network architecture concepts including topology, protocols, and components
  • Ability to establish security patterns related to cloud/ hybrid architecture and work with various tech teams to assist with the implementation as needed
  • Must be able to represent the team in technical discussions and drive towards deliverables with minimal guidance
  • Very good understanding of zero-trust architecture and working experience with relevant tools/technologies
  • Knowledge related to AI, specifically Microsoft co-pilot



Must Have:

  • Experience working with identity management systems including Authentication, SSO, RBAC, privilege management, Microsoft Entra

Applied = 0
MORE JOBS LIKE THIS

(web-77cf7d65c7-z52c2)