Haystack
← Back to Jobs
Administrative

Enterprise Security Architect with Telecom Domain

Alltech Consulting Services, Inc.Seattle, WA🇺🇸United StatesPosted 17 Jul 2026

Quick Overview

Work Type
On Site
Level
Mid Senior

Job Description

Greetings

Please review the job description below. if you are interested in this position, please forward your update resume for immediate consideration.

Job Title: Enterprise Security Architect with Telecom Domain

Location: Seattle WA (ONSITE)

CONTRACT/FULLTIME

JOB DESCRIPTION :

We are seeking an experienced Enterprise Security Architect to design, govern, and evolve holistic cybersecurity architecture across our entire telecommunications enterprise spanning network infrastructure, IT systems, applications, data, cloud, identity, and endpoints. This is a broad, cross-domain security architecture role, not limited to network security: the successful candidate will own the security design of business applications, OSS/BSS/CRM platforms, customer data environments, cloud workloads, third-party integrations, and corporate IT, in addition to the carrier-grade network (RAN, Core, Transport, 5G).

The ideal candidate brings a full-spectrum cybersecurity architecture background - application security, data protection, identity and access management, cloud security, and security operations. Combined with an understanding of telecom-specific risk, so that security is designed consistently across every layer of the business, not just the network.

Technical Skills:

  • Strong understanding of telecom platforms: OSS/BSS, 5G Core, RAN, IMS, VoLTE/VoNR, and signaling protocols.
  • Expertise in IAM platforms (Okta, Azure AD, CyberArk, SailPoint, Ping).
  • Knowledge of network security technologies (firewalls, IDS/IPS, NAC, microsegmentation, SDWAN).
  • Familiarity with SOC operations (SIEM, SOAR, EDR/XDR, threat intelligence).
  • Understanding of AI/ML systems and AI security governance.
  • Experience with cloud environments (AWS, Azure, Google Cloud Platform) and Zero Trust frameworks.

Certifications (any one certification is required):

  • CISSP, CISM, or CCSP.
  • CIAM or equivalent IAM certifications.
  • Telecomspecific or network security certifications (e.g., CCNP Security, PCNSE, Juniper, Nokia, or GSMA programs).
  • AI Security or AI Governance certifications (ISC2 AI+, NIST AI RMF programs).
  • CRISC, CISA, or ISO 27001 Lead Implementer/Auditor

Key Responsibilities:

1. Enterprise Security Architecture & Strategy

  • Own and evolve the enterprise cybersecurity architecture framework, covering applications, data, identity, endpoints, cloud, network, and OT/IoT ensuring no domain is treated in isolation.
  • Develop security reference architectures, patterns, and standards used across the enterprise, including for corporate IT, digital/customer-facing platforms, OSS/BSS, and telecom network functions.
  • Partner with enterprise architecture, application development, network engineering, and product teams to embed security-by-design and secure-by-default principles into all new initiatives.
  • Lead architecture review boards, providing security sign-off on major technology, product, and infrastructure investments.
  • Build and maintain a multi-year security architecture roadmap aligned to business strategy, risk appetite, and regulatory obligations.

2. Application, Data & Identity Security

  • Architect security controls for enterprise applications, APIs, microservices, and customer-facing digital channels (web, mobile, IVR, self-service portals).
  • Define data security and data protection architecture: classification, encryption (at rest/in transit), tokenization, DLP, and key management across structured and unstructured data.
  • Design enterprise Identity and Access Management (IAM), Privileged Access Management (PAM), and Zero Trust architecture spanning employees, contractors, customers, and machine identities.
  • Guide secure software development lifecycle (SSDLC) and DevSecOps integration - threat modeling, secure code review gates, and automated security testing in CI/CD pipelines.

3. Cloud & Infrastructure Security

  • Architect security for hybrid and multi-cloud environments (AWS, Azure, Google Cloud Platform), including workload protection, container/Kubernetes security, CSPM, and cloud-native security tooling.
  • Evaluate and architect security controls for virtualized and cloud-native network functions (NFV/VNFs/CNFs) alongside traditional IT infrastructure.
  • Design security architecture for data centers, endpoints, email, and collaboration platforms as part of the broader enterprise estate.

4. Telecom Network & Emerging Technology Security

  • Extend enterprise security architecture principles into telecom-specific domains: RAN, Core Network (4G/5G), Transport, IMS, and OSS/BSS.
  • Address telecom-specific attack surfaces (SS7/Diameter/GTP exploitation, SIM swapping, network slicing abuse, O-RAN interfaces) within the broader enterprise risk model.
  • Provide security architecture guidance for IoT, edge computing, 5G network slicing, and MEC deployments as extensions of enterprise risk, not standalone concerns.

5. Risk, Governance & Operations Alignment

  • Conduct enterprise-wide threat modeling and architecture risk assessments (STRIDE, PASTA) across applications, infrastructure, and business processes.
  • Collaborate with GRC teams to ensure architecture aligns with regulatory and industry frameworks (GDPR, NIST CSF, ISO 27001, PCI-DSS, CPNI, and telecom-specific requirements).
  • Assess security architecture risk in third-party, vendor, and supply chain relationships, including MSPs and cloud providers.
  • Work closely with Security Operations (SOC), Incident Response, and Threat Intelligence teams to ensure architectural designs support detection, response, and forensic requirements.
  • Present architecture strategy, risk posture, and roadmaps to senior leadership, business stakeholders, and audit/regulatory bodies.
  • Mentor and provide technical leadership to security engineers, analysts, and other architects across the security organization.

6. AI Security

  • Oversee governance for secure adoption of AI/ML systems in telecom analytics, fraud detection, and customer platforms.
  • Implement controls for AI model governance, ensuring integrity, explainability, and regulatory compliance.
  • Guide teams on securing AI pipelines, preventing model manipulation or data poisoning.
  • Assess risks associated with AI-based network optimization and automation systems.

Qualifications

Education & Experience:

  • Bachelor s or Master s degree in Cybersecurity, Computer Science, Information Systems, or related field.
  • 12+ years of cybersecurity experience, with 5+ years in a Security Architect role
  • Experience in Telecom cybersecurity, including network security, customer data protection, and regulatory compliance

Similar jobs