AI Summary
Nail advisory is seeking an experienced Security Architect to support the design, implementation, and governance of secure systems for commercial organizations. The role involves working closely with engineering, product, and business stakeholders to embed security into architectures from inception through deployment.
Key Highlights
Design and review secure system architectures
Define security requirements aligned with business objectives
Collaborate with engineering teams to integrate security into SDLC and DevOps workflows
Technical Skills Required
Benefits & Perks
Competitive, contract-based compensation
Fully remote work
Contract-based employment
Job Description
Company Description
Nail is a cybersecurity advisory firm dedicated to helping organizations identify, manage, and reduce digital risks. We collaborate with leadership teams to address security gaps, enhance defenses, and promote resilience across systems, people, and processes. With a focus on practicality, our real-world threat models prioritize clarity, enabling better decision-making under pressure. Nail offers services ranging from risk assessments and security strategies to operational guidance and compliance support, ensuring cybersecurity becomes a foundational aspect of your organization.
Role Description
We are seeking an experienced Security Architect to support the design, implementation, and governance of secure systems for commercial organizations across multiple industries. This role involves working closely with engineering, product, and business stakeholders to embed security into architectures from inception through deployment.
This is a remote, contract-based role, suited for professionals who can operate independently while collaborating with distributed teams.
Key Responsibilities
• Design and review secure system architectures for cloud, on-prem, and hybrid environments
• Define security requirements aligned with business objectives and regulatory needs
• Develop and maintain security architecture standards, patterns, and frameworks
• Conduct threat modeling, risk assessments, and architecture reviews
• Advise on secure application, infrastructure, network, and data architectures
• Collaborate with engineering teams to integrate security into SDLC and DevOps workflows
• Evaluate and recommend security technologies, tools, and controls
• Support compliance initiatives (e.g., ISO 27001, SOC 2, PCI DSS, GDPR, etc.)
• Provide guidance on incident response architecture and resilience planning
• Communicate security risks and solutions clearly to technical and non-technical stakeholders
Qualifications
• Experience as a Security Architect or Senior Security Engineer
• Background in designing secure enterprise or commercial systems
• Understanding of modern cyber threats, attack vectors, and defensive strategies
• Experience working with cloud platforms (AWS, Azure, GCP)
• Knowledge of security architecture frameworks (e.g., SABSA, TOGAF, Zero Trust)
• Familiarity with compliance and regulatory standards relevant to commercial organizations
• Ability to work independently in a remote, contract-based environment
Technical Skills & Expertise
• Cloud security architecture (IAM, network security, encryption, logging)
• Application security (secure design, OWASP Top 10, API security)
• Network security (segmentation, firewalls, VPNs, Zero Trust models)
• Identity and Access Management (IAM, PAM, SSO, MFA)
Data protection and encryption strategies
• Secure DevOps / DevSecOps practices
Threat modeling methodologies (STRIDE, ATT&CK, etc.)
• Security tooling evaluation and integration
Engagement & Compensation
• Engagement Type: Contract
• Work Mode: Fully Remote
• Compensation: Competitive, contract-based (rate dependent on experience and scope)