The role is based in Damascus, Syria, and is full-time on-site.Arabic will be preferred Position ObjectivesThe Security Architect will define and govern the security architecture for a large-scale enterprise business application platform covering application security, infrastructure security, data protection, IAM, API security, container security, logging, auditability, and compliance. This role is highly important because the platform integrates with financial, procurement, identity, network, and operational systems.Job Description and ResponsibilitiesDefine the end-to-end platform security architectureReview security design across the application, database, operating system, container platform, APIs, mobile app, and integration layersDefine authentication, authorization, SSO, RBAC, least privilege, and segregation of duties requirementsEnsure secure integration with IAM, ERP, network systems, planning/design systems, and enterprise APIsDefine API security requirements, including OAuth2, OpenID Connect, SAML, mTLS, certificates, token handling, and API gateway controlsReview and guide secure deployment on Linux, virtual machines, OpenShift, Kubernetes, or equivalent platformsDefine data protection controls, including encryption at rest, encryption in transit, database security, backup protection, and audit loggingSupport vulnerability assessment, penetration testing, remediation tracking, and secure release governanceDefine DevSecOps security gates, including code scanning, dependency scanning, container image scanning, and secret managementSupport security documentation, risk assessment, compliance evidence, and architecture review submissionsEnsure proper security logging, SIEM integration, monitoring, incident response readiness, and audit trail coverageQualification and Required Skills10+ years of experience in cybersecurity, security architecture, application security, cloud/container security, or infrastructure securityExperience securing enterprise applications used by large internal and external user groupsStrong knowledge of IAM, SSO, RBAC, API security, data protection, and enterprise security governanceExperience with Linux security, database security, web/mobile application security, and secure integrationsExperience supporting security reviews, audit requirements, vulnerability management, and remediation governanceAbility to work with enterprise architecture, infrastructure, application, data, and operations teamsPreferred CertificationsCISSPCISMCCSPCertified Kubernetes Security SpecialistISO 27001 Lead Implementer / Lead AuditorCEH, OSCP, GIAC, or equivalent security certificationsPreferred ExperienceExperience with regulated industries such as telecom, banking, government, utilities, or critical infrastructureExperience with Oracle ERP security integrationExperience with IAM onboarding for vendors, contractors, internal users, and role-based business accessExperience with ISO 27001, NIST, CIS Benchmarks, or similar control frameworksExperience with DevSecOps and secure CI/CD pipelines📝 To ensure faster processing of your application, please make sure to fill in the following details in the company portal.Current location and availability, Notice period / earliest joining date/ Nationality /Current/Expected salary (USD)