LEAD CYBER ARCHITECT

Job Description

Job Purpose/summary

Responsible for Secure Architectural design, blueprints, and patterns across multiple technology platforms within the business. Engages with stakeholders across these platforms to ensure their solutions are engineered to be secure by design and in line with Maersk security policies and approved patterns.

You will have in-depth knowledge of various Cyber Security areas such as Network Security, Cloud Security, Endpoint Security, Vulnerability Management, Risk Management, Baseline & compliance etc. You will make decision on behalf of the organization regarding Cyber Security solution architecture and implementation.

You will have the ability to clearly document your decision-making in the form of requirements capture that leads to a finalized design. You will have the ability to collaborate with stakeholders of any level across the organization to understand their points of view and sell your ideas, concepts, and architectural knowledge for the benefit of the organization.

You will work collaboratively with the Platform Architecture teams to review their roadmaps and ensure the Cyber Security Product roadmap as defined by Cyber Security product owners reflect alignment with respect to secure design.

You will push the intrinsic Cyber security agenda and co-create the relevant security roadmaps which will include understanding current posture, deciphering where the organization needs to get to in the short, medium and long term and how it will get there via architecture decision-making and collaboration. You will also be responsible for horizon scanning for new technology and security techniques.

Key responsibilities

• Lead and define the enterprise Development Security (DevSecOps) architecture strategy, embedding security across the Software Development Lifecycle (SDLC).

• Drive shift-left security adoption by integrating automated security guardrails into developer platforms, repositories, and CI/CD pipelines.
• Define and govern the enterprise Software Supply Chain Security architecture, ensuring artifact integrity, provenance, and dependency risk management.
• Establish architectural standards for SBOM and AI-BOM generation, attestation, and validation across CI/CD and MLOps pipelines.
• Define and standardize security patterns for APIs, containers, serverless, and cloud-native applications across build, packaging, and deployment stages, including image signing, runtime integrity and artifact verification.
• Architect automated security validation frameworks, including SAST, DAST, SCA, and IaC scanning, with policy-as-code enforcement and secure promotion controls within CI/CD pipelines.
• Provide secure architecture guidance for AI/ML development and MLOps platforms, ensuring model integrity, data lineage, adversarial resilience, and trusted deployment.
• Lead development security architecture reviews and threat modeling activities to ensure alignment with enterprise secure development and software supply chain requirements.
• Act as a trusted security advisor to Engineering, Platform, DevOps, and AI/ML teams on secure software delivery practices.
• Architect enterprise secrets management patterns, integrating secure vaulting and automated secret detection into developer workflows and CI/CD pipelines.
• Provide technical leadership and mentorship to architects and engineers, advancing enterprise, secure development maturity and best practices.
• Drive continuous improvement of enterprise secure development capabilities through automation, developer enablement, and security maturity assessments and roadmap execution.

Primary internal stakeholders

• Primary internal stakeholder:
• Senior Business and Technology Leadership
• Enterprise Architecture
• Platform Engineers
• Platform Owners
• Cyber Security Leadership
• Technology Platform Leadership
• Product developers
• Tech Enablement Engineers

Primary external stakeholders

• Primary external stakeholders:
• Associations, Communities of Practice and Centers of Excellence in the realm of Cyber Security
• Vendors

Required experience & skills

• Bachelors degree in Computer Science, Computer Engineering or related field, or 15+ years relevant work experience
• Ability to lead, collaborate, be the authority on Cyber Security Solutions
• In-depth knowledge of Cyber security and understanding of other cyber security domains such as Risk Management, IAM, Vulnerability Management, etc.
• In-depth understanding of architecture and engineering techniques
• Strong understanding of technology and applications across a range of different technology stacks
• Solid understand of the relationships between business strategy, digital transformation strategy and cyber security posture

Key measures

• Creation of architecture building blocks
• Adherence to enterprise-wide architecture guardrails
• Delivery of KPIs related to the architectural principles
• Reduction of Security Risk Backlog through design and delivery of solutions

Maersk is committed to a diverse and inclusive workplace, and we embrace different styles of thinking. Maersk is an equal opportunities employer and welcomes applicants without regard to race, colour, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, pregnancy or parental leave, veteran status, gender identity, genetic information, or any other characteristic protected by applicable law. We will consider qualified applicants with criminal histories in a manner consistent with all legal requirements.

We are happy to support your need for any adjustments during the application and hiring process. If you need special assistance or an accommodation to use our website, apply for a position, or to perform a job, please contact us by emailing accommodationrequests@maersk.com.