Senior Security Architect SaaS / Cloud Platforms

Title: Senior Security Architect - SaaS / Cloud Platforms Location: Chicago, IL or Phoenix, AZ Hybrid - Anchor Days: Tuesday - Thursday Duration: 6 months Additional Notes from HM: SaaS Security Architecture Role Overview of Team & Need The client is based in Chicago and leads a team within Security Architecture The team supports a SaaS Security Program focused on: Improving the security posture of SaaS platforms used across the organization. This program includes a cross-functional group from multiple teams. This role will: Represent security architecture Perform security architecture reviews of SaaS platforms Partner closely with the SaaS program team Core Responsibilities Assess the overall security posture of SaaS platforms currently in use Conduct security architecture reviews (not implementation) Identify: Security gaps Risks Misalignments with frameworks Provide advisory recommendations based on findings Work across teams to: Align with stakeholders Communicate risks and solutions Correlate findings across multiple domains (ex: identity + data + access) Key Focus Areas (Cybersecurity Domains) Top 3 Priority Domains Cloud Security Identity Security Data Security Secondary Areas Attack Surface Management Security Operations / Logging (log ingestion, security logs) API Security (important within identity ecosystem) Expectation NOT a deep SME in one domain MUST have broad, well-rounded knowledge across domains Ability to "connect the dots" across security domains SaaS Environment The client already uses hundreds of SaaS platforms This role focuses on: Existing platforms, not new implementations No single SaaS platform expertise required Work is platform-agnostic, focused on security posture evaluation Frameworks & Compliance Candidates must be familiar with: NIST CISA / Cloud Security Frameworks GDPR Other applicable regulatory requirements Expectation Ability to: Map findings to frameworks Justify risks using compliance standards Explain why something is a gap using these frameworks Collaboration & Stakeholders This role requires strong collaboration with: SaaS Program Team Application / Platform Owners Security Teams across domains Third-Party Risk Team (involved in process) Key Trait Strong communication and stakeholder alignment skills are critical for success Role Nature (Hands-on vs. Advisory) Primarily: Architecture & design review Advisory-focused NOT responsible for: Managing SaaS platforms Deep hands-on engineering work Important Note Prior hands-on experience is highly valued Makes candidates more effective in architecture roles Experience Requirements 7+ years in cybersecurity 3-4 years in architecture/design roles Ideal Candidate Profile Broad cyber experience across multiple domains Strong ability to: Correlate risks Analyze complex environments Provide strategic recommendations Cloud Environment Preference order: Azure (strongly preferred) AWS GCP Note Role is SaaS-focused, so: Less emphasis on deep cloud-native engineering More focus on overall security posture Identity & Access Expectations Understanding of: Authentication & Authorization SSO & Access Management Human vs. Non-human identities API security within identity ecosystems Certifications Preferred (not required): CISSP CCSP Strong candidates without certs will still be considered Financial Services Experience Nice to have, not required Location & RTO Primary location: Chicago Must comply with Return-to-Office requirements Success in First 90 Days Quickly develop ability to: Understand multiple cybersecurity domains Connect the dots across domains Effectively: Identify risks and gaps Communicate findings to stakeholders Build strong working relationships across teams Demonstrate advisory mindset + architectural thinking The Client is looking for an enthusiastic, innovative Security Architect to lead Security Architecture reviews specific to SaaS platforms. Qualifications Bachelor's degree in computer science or related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of cloud security, preferred experience in financial industry. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. Seven years of experience in the Information Security role. Three years of experience with cloud and/or technologies CISSP, CSSP, CCNP/CCIE Security, or Cloud security certification preferred Strong collaboration skills and analytical ability Skill Level: Senior Requirements/Responsibilities- In-depth knowledge of various cybersecurity frameworks, standards, and SSDLC Hands-on experience with management of SaaS platforms within enterprise environment Knowledge related to third party cyber security due diligence and Risk Management Experience working with identity management systems including Authentication, SSO, RBAC, privilege management, Microsoft Entra Must be knowledgeable relate