LEAD CYBER ARCHITECT

Job Description

Job Purpose/summary

Responsible for Secure Architectural design, blueprints, and patterns across multiple technology platforms within the business. Engages with stakeholders across these platforms to ensure their solutions are engineered to be secure by design and in line with Maersk security policies and approved patterns.

You will have in-depth knowledge of various Cyber Security areas such as Network Security, Cloud Security, Endpoint Security, Vulnerability Management, Risk Management, Baseline & compliance etc. You will make decision on behalf of the organization regarding Cyber Security solution architecture and implementation.

You will have the ability to clearly document your decision-making in the form of requirements capture that leads to a finalized design. You will have the ability to collaborate with stakeholders of any level across the organization to understand their points of view and sell your ideas, concepts, and architectural knowledge for the benefit of the organization.

You will work collaboratively with the Platform Architecture teams to review their roadmaps and ensure the Cyber Security Product roadmap as defined by Cyber Security product owners reflect alignment with respect to secure design.

You will push the intrinsic Cyber security agenda and co-create the relevant security roadmaps which will include understanding current posture, deciphering where the organization needs to get to in the short, medium and long term and how it will get there via architecture decision-making and collaboration. You will also be responsible for horizon scanning for new technology and security techniques.

Key responsibilities

• Lead and define the enterprise multi-cloud security architecture strategy across AWS, Azure, and GCP. Govern unified security standards, baselines, and guardrails to ensure consistent posture.
• Own the security architecture and governance of enterprise Cloud Landing Zones, ensuring alignment with approved Architecture Design Records (ADRs).
• Architect enterprise Identity and Access Management (IAM) strategies, including privileged access management, federation, and zero-trust identity models across hybrid environments.
• Define and standardize security controls for cloud-native platforms, including Kubernetes, containers, serverless workloads, APIs, and CI/CD pipelines.
• Champion Security-by-Design and Zero Trust principles, ensuring secure patterns are embedded across cloud platforms and solution designs.
• Lead cloud security architecture reviews and threat modeling activities (ADR/CAR) to assess, challenge, and endorse solution security posture, providing findings and recommendations.
• Design secure architecture patterns addressing regulatory compliance, data sovereignty, and regional cloud requirements for sensitive and regulated workloads.
• Drive adoption of DevSecOps practices, integrating automated security controls, policy-as-code, and scalable guardrails into cloud deployment pipelines.
• Act as the trusted security advisor to Enterprise Architecture, Platform Engineering, and DevOps leadership on secure cloud adoption and transformation initiatives.
• Provide technical leadership and mentorship to architects and engineers, advancing enterprise cloud security maturity and best practices.
• Drive continuous improvement of enterprise cloud security posture through architecture modernization and security capability maturity initiatives.
• Ensure cloud security architectures securely support emerging workloads, including AI/ML platforms and data-intensive applications, through scalable identity, network isolation, and workload protection controls.

Primary internal stakeholders

• Primary internal stakeholder:
• Senior Business and Technology Leadership
• Enterprise Architecture
• Platform Engineers
• Platform Owners
• Cyber Security Leadership
• Technology Platform Leadership
• Product developers
• Tech Enablement Engineers

Primary external stakeholders

• Primary external stakeholders:
• Associations, Communities of Practice and Centers of Excellence in the realm of Cyber Security
• Vendors

Required experience & skills

• Bachelors degree in Computer Science, Computer Engineering or related field, or 14+ years relevant work experience
• Ability to lead, collaborate, be the authority on Cyber Security Solutions
• In-depth knowledge of Cyber security and understanding of other cyber security domains such as Risk Management, IAM, Vulnerability Management, etc.
• In-depth understanding of architecture and engineering techniques
• Strong understanding of technology and applications across a range of different technology stacks
• Solid understand of the relationships between business strategy, digital transformation strategy and cyber security posture

Key measures

• Creation of architecture building blocks
• Adherence to enterprise-wide architecture guardrails
• Delivery of KPIs related to the architectural principles
• Reduction of Security Risk Backlog through design and delivery of solutions

Maersk is committed to a diverse and inclusive workplace, and we embrace different styles of thinking. Maersk is an equal opportunities employer and welcomes applicants without regard to race, colour, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, pregnancy or parental leave, veteran status, gender identity, genetic information, or any other characteristic protected by applicable law. We will consider qualified applicants with criminal histories in a manner consistent with all legal requirements.

We are happy to support your need for any adjustments during the application and hiring process. If you need special assistance or an accommodation to use our website, apply for a position, or to perform a job, please contact us by emailing accommodationrequests@maersk.com.