Senior Security Architect – SaaS / Cloud Platforms

Title: Senior Security Architect – SaaS / Cloud Platforms
Location: Chicago, IL or Phoenix, AZ Hybrid - Anchor Days: Tuesday - Thursday
Duration: 6 months
 
Additional Notes from HM:
SaaS Security Architecture Role
Overview of Team & Need

• The client is based in Chicago and leads a team within Security Architecture
• The team supports a SaaS Security Program focused on:
  • Improving the security posture of SaaS platforms used across the organization.
• This program includes a cross-functional group from multiple teams.
• This role will:
  • Represent security architecture
  • Perform security architecture reviews of SaaS platforms
  • Partner closely with the SaaS program team

Core Responsibilities

• Assess the overall security posture of SaaS platforms currently in use
• Conduct security architecture reviews (not implementation)
• Identify:
  • Security gaps
  • Risks
  • Misalignments with frameworks
• Provide advisory recommendations based on findings
• Work across teams to:
  • Align with stakeholders
  • Communicate risks and solutions
• Correlate findings across multiple domains (ex: identity + data + access)

Key Focus Areas (Cybersecurity Domains)
Top 3 Priority Domains

1. Cloud Security
2. Identity Security
3. Data Security

Secondary Areas

• Attack Surface Management
• Security Operations / Logging (log ingestion, security logs)
• API Security (important within identity ecosystem)

Expectation

• NOT a deep SME in one domain
• MUST have broad, well-rounded knowledge across domains
• Ability to “connect the dots” across security domains

SaaS Environment

• The client already uses hundreds of SaaS platforms
• This role focuses on:
  • Existing platforms, not new implementations
• No single SaaS platform expertise required
• Work is platform-agnostic, focused on security posture evaluation

Frameworks & Compliance
Candidates must be familiar with:

• NIST
• CISA / Cloud Security Frameworks
• GDPR
• Other applicable regulatory requirements

Expectation

• Ability to:
  • Map findings to frameworks
  • Justify risks using compliance standards
  • Explain why something is a gap using these frameworks

Collaboration & Stakeholders
This role requires strong collaboration with:

• SaaS Program Team
• Application / Platform Owners
• Security Teams across domains
• Third-Party Risk Team (involved in process)

Key Trait

• Strong communication and stakeholder alignment skills are critical for success

Role Nature (Hands-on vs. Advisory)

• Primarily:
  • Architecture & design review
  • Advisory-focused
• NOT responsible for:
  • Managing SaaS platforms
  • Deep hands-on engineering work

Important Note

• Prior hands-on experience is highly valued
  • Makes candidates more effective in architecture roles

Experience Requirements

• 7+ years in cybersecurity
• 3–4 years in architecture/design roles

Ideal Candidate Profile

• Broad cyber experience across multiple domains
• Strong ability to:
  • Correlate risks
  • Analyze complex environments
  • Provide strategic recommendations

Cloud Environment

• Preference order:
  1. Azure (strongly preferred)
  2. AWS
  3. GCP

Note

• Role is SaaS-focused, so:
  • Less emphasis on deep cloud-native engineering
  • More focus on overall security posture

Identity & Access Expectations

• Understanding of:
  • Authentication & Authorization
  • SSO & Access Management
  • Human vs. Non-human identities
  • API security within identity ecosystems

Certifications

• Preferred (not required):
  • CISSP
  • CCSP
• Strong candidates without certs will still be considered

Financial Services Experience

• Nice to have, not required

Location & RTO

• Primary location: Chicago
• Must comply with Return-to-Office requirements

Success in First 90 Days

• Quickly develop ability to:
  • Understand multiple cybersecurity domains
  • Connect the dots across domains
• Effectively:
  • Identify risks and gaps
  • Communicate findings to stakeholders
• Build strong working relationships across teams
• Demonstrate advisory mindset + architectural thinking

 

The Client is looking for an enthusiastic, innovative Security Architect to lead Security Architecture reviews specific to SaaS platforms.
 
Qualifications

• Bachelor's degree in computer science or related discipline and experience in information security, or an equivalent combination of education and work experience.
• Deep knowledge of cloud security, preferred experience in financial industry.
• Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
• Seven years of experience in the Information Security role. Three years of experience with cloud and/or technologies
• CISSP, CSSP, CCNP/CCIE Security, or Cloud security certification preferred
• Strong collaboration skills and analytical ability

 
Skill Level: Senior
 
Requirements/Responsibilities-

• In-depth knowledge of various cybersecurity frameworks, standards, and SSDLC
• Hands-on experience with management of SaaS platforms within enterprise environment
• Knowledge related to third party cyber security due diligence and Risk Management
• Experience working with identity management systems including Authentication, SSO, RBAC, privilege management, Microsoft Entra
• Must be knowledgeable related to various security frameworks, compliance, and regulations including NIST, GDPR, SOC reports etc.
• Experience working with Microsoft Azure, AWS, hybrid, and multi-cloud systems
• Very good understanding of data security concepts including encryption, retention, classification
• Knowledge related to Application security including OWASP, API security, SSDLC etc.
• Understanding related to security and audit logs, SIEM integration, alerting, incident response plan, pen testing
• Very good understanding related to the concepts related to Firewall, IPS/IDS, Proxy servers, WAF, App Proxy, APIM
• Very strong understanding of network architecture concepts including topology, protocols, and components
• Ability to establish security patterns related to cloud/ hybrid architecture and work with various tech teams to assist with the implementation as needed
• Must be able to represent the team in technical discussions and drive towards deliverables with minimal guidance
• Very good understanding of zero-trust architecture and working experience with relevant tools/technologies
• Knowledge related to AI, specifically Microsoft co-pilot

 
Must Have:

• Experience working with identity management systems including Authentication, SSO, RBAC, privilege management, Microsoft Entra

 

At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position's starting pay is: $75.00/hr.