Security Architect

Harvard Partners

$120K — $150K *
US-AnywhereRemote in Boston, MA
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 8+ years in security architecture or senior security engineering roles.
  • Experience with large-scale application or platform modernization.
  • Knowledge of application security, identity access management, and network security.
  • Preferred experience in hybrid retail or distributed environments.
  • Ability to interpret architectural diagrams and design artifacts.
  • Familiarity with secure SDLC, threat modeling, and risk assessment methodologies.
  • Skill in producing clear security architecture documentation.

Responsibilities

  • Review and assess retail system architectures including APIs and data protection.
  • Identify security risks and design gaps early, recommending mitigations.
  • Define security architecture patterns for hybrid retail environments.
  • Embed with project teams to provide actionable security input during development.
  • Participate in architecture reviews and provide decision-ready feedback.
  • Support security risk assessments and threat modeling for new capabilities.
  • Engage with engineering to pragmatically resolve security findings.

Benefits

  • Opportunity to work with a high-impact retail technology team.
  • Collaborative environment with cross-departmental partnerships.
  • Chance to influence security frameworks at a large scale.
  • Direct reporting to the Chief Information Security Officer.
  • Access to a range of resources for professional development.
  • Engagement in modern architectural practices across on-prem and cloud environments.
Full Job Description
About the Job

As the Security Architect, you will provide hands-on security architecture support to our Retail business and technology teams. This role partners closely with Retail Technology, Product Architecture, Engineering, and Global Cybersecurity Services to ensure that security requirements are embedded into design decisions, delivery plans, and operational patterns without slowing product execution or over-engineering controls. The Architect will act as a trusted security architecture advisor, helping teams navigate risk, regulatory obligations, and modern architectural patterns across on-prem and cloud-enabled retail platforms.

Key Responsibilities Security Architecture & Design:

  • Review and assess solution and platform architectures for retail systems, including application and API design, identity and access patterns, network segmentation and connectivity, and data protection and privacy controls.
  • Identify security risks, design gaps, and control dependencies early in the lifecycle; recommend pragmatic mitigations.
  • Define and promote security architecture patterns appropriate for retail and hybrid environments (on-prem, cloud-enabled, and distributed sites). Project & Delivery Support.
  • Embed with project delivery teams to provide timely, actionable security input throughout discovery, design, build, and rollout.
  • Participate in architecture reviews, design forums, and technical deep-dives; provide clear feedback and decision-ready recommendations.
  • Support threat modeling and security risk assessments for new or changed capabilities.
  • Partner with engineering to resolve findings pragmatically; balancing risk, cost, and delivery timelines. Governance & Standards Alignment
  • Ensure designs align with security architecture principles, applicable regulatory and contractual obligations, and internal security control baselines.
  • Contribute to architecture decision records (ADRs) and security review documentation.
  • Support audit-ready documentation for design decisions, exceptions, and risk acceptance where required. Stakeholder Engagement
  • Act as a bridge between security, retail technology, and product teams to drive shared outcomes.
  • Clearly articulate security risks, options, and tradeoffs to both technical and non-technical stakeholders.
  • Provide guidance that enables teams to move forward confidently rather than blocking progress.


Qualifications:

  • 8+ years of experience in security architecture or senior security engineering roles.
  • Demonstrated experience supporting large-scale application or platform modernization programs.
  • Strong understanding of application security architecture, identity and access management concepts, API and integration security, and network and infrastructure security (on-prem and cloud-connected).
  • Experience operating in hybrid retail or distributed environments (e.g., stores/sites, terminals/endpoints, hybrid connectivity) strongly preferred. Technical & Architectural Skills.
  • Ability to interpret and influence solution architecture diagrams and design artifacts; comfortable working with reference architectures and target-state roadmaps.
  • Familiarity with secure SDLC practices, threat modeling techniques, and vulnerability and risk assessment methodologies.
  • Comfortable advising on security controls and patterns without prescribing specific vendor tools unless necessary. Communication & Delivery
  • Able to produce clear, concise security architecture documentation (reviews, recommendations, and decision records).
  • Comfortable engaging with product managers, solution architects, engineers, and security and risk stakeholders.
  • Pragmatic, delivery-oriented mindset with strong professional judgment. What Success Looks Like.
  • Security requirements are embedded early in project designs and delivery plans.
  • Delivery teams view security as an enabler, not a blocker.
  • Architecture decisions are well-documented, risk-aware, and defensible.
  • Retail platforms progress toward modernization with reduced rework and fewer late-stage security issues. Reporting & Alignment Reports directly to the CISO and works closely with the Global Cybersecurity Services teams. Day-to-day engagement is aligned to Retail Technology and project delivery leadership.


Similar Jobs

More Jobs at Harvard Partners

More Information Technology Jobs

Find similar Security Architect jobs: