Senior Security Architect

Timestamp Group aggregates several leading Portuguese IT solutions and services companies around the concepts of excellence and knowledge sharing. We are committed to technological leadership, based on the quality of our service and technological solutions, supported by continuous training and certification. 

Role: Senior Security Architect 

Job Responsibilities: 

• Design and implement end-to-end security architectures for cloud, hybrid, and on-premises environments. 

• Define and document security policies, standards, and technical reference architectures. 

• Lead security-by-design initiatives in enterprise and solution architecture planning. 

• Develop and review network segmentation strategies, encryption practices, identity and access models, and secure data flows. 

• Provide expert guidance on secure configuration and integration of technologies (e.g., firewalls, IAM, SIEM, DLP, EDR, WAFs, VPNs). 

• Conduct security risk assessments and ensure alignment with frameworks like ISO/IEC 27001, NIST, and Zero Trust. 

• Collaborate with stakeholders across IT, development, and compliance to ensure security is embedded throughout systems and processes. 

• Advise clients during security architecture reviews, audits, and transformation projects. 

• Stay up to date on evolving threats and technologies and adapt security architecture accordingly. 

• Mentor security engineers and junior consultants on architectural best practices. 

Technical Skills Required: 

• Proven experience in enterprise security architecture and design of secure systems. 

• Strong understanding of network security, cryptography, identity and access management, and cloud security (e.g., AWS, Azure, GCP). 

• Familiarity with Zero Trust, SASE, and DevSecOps concepts. 

• Deep knowledge of cybersecurity frameworks (e.g., ISO/IEC 27001, NIST SP 800-53, CIS Controls, TOGAF Security Architecture). 

• Experience with security tools and platforms, including SIEM, EDR, CASB, DLP, PKI, and vulnerability management. 

• Hands-on knowledge of secure protocols, TLS/SSL, VPNs, and segmentation strategies. 

• Relevant certifications such as CISSP, SABSA, CCSP, AWS/Azure Security Architect, or TOGAF are preferred. 

Place: Lisbon/Porto (hybrid)