Security Architect

New York, NY, US, 10005

Technology Office

Sophos Overview – Cybersecurity Evolved


Sophos is a worldwide leader in next-generation cybersecurity, protecting more than 500,000 organizations and millions of consumers in more than 150 countries from today’s most advanced cyberthreats. Powered by threat intelligence, AI and machine learning from SophosLabs and SophosAI, Sophos delivers a broad portfolio of advanced products and services to secure users, networks and endpoints against ransomware, malware, exploits, phishing and the wide range of other cyberattacks. Sophos provides a single integrated cloud-based management console, Sophos Central – the centerpiece of an adaptive cybersecurity ecosystem that features a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity vendors. Sophos sells its products and services through reseller partners and managed service providers (MSPs) worldwide. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.


Job Purpose:

We are looking for a Security Architect to protect Sophos Product and Enterprise assets. This role will deliver key architectures, lead security architecture reviews, and develop automation in support of scaling the security architecture program.

In addition to managing the security architecture review process and tooling, you will support other business units by providing security guidance. Building relationships and establishing great communication channels is essential. You will lead on engagements and proactively discover new areas of concern, feeding these into the risk management process.


Skills & Experience:


  • Practical experience analyzing systems, developing and implementing appropriate mitigation strategies.
  • At least 5 years’ experience in a senior security role.
  • Ability to handle complexity and innovate.
  • Strong project management and organizational skills.
  • Ability to work in a fast-paced, rapidly evolving company.
  • Excellent communication, presentation and interpersonal skills – ability to communicate across and up the organization including internal communication to gain buy-in on security strategy.
  • Identify weaknesses in internal controls and opportunities to enhance operational efficiencies.
  • Analyze architecture-related technical information for problems and provide engineering and technical solution or support.
  • Have and maintain an expert knowledge of cybersecurity industry trends and developments and advise on changes to the threat landscape.
  • Ability to articulate complex technical security issues into business focused terms and communicate with senior stakeholders across the business.
  • Automation and security scripting skills (e.g. python, Jupiter, SIEM, SOAR)
  • Securing Product/Developer environments (e.g. DevOps, CI/CD pipelines, repositories, 3rd party libraries)
  • Knowledge of Cloud infrastructure, including but not limited to; AWS, GCP, Azure.
  • Knowledge of networking concepts (i.e. Network security, protocols)
  • Knowledge of threats (e.g. DoS, XSS, buffer overflow)
  • Knowledge of controls (e.g. MFA, Firewalls, EDR)



  • Experience using security frameworks to increase security posture (e.g. NIST CSF, MITRE ATT&ACK)
  • Experience using of DevOps methodologies for Security (i.e. Agile, DevSecOps)
  • Knowledge of Sophos’ or competitive product suites.
  • Educated to bachelor’s degree level or above.
  • Experience identifying, reporting, and resolving security violations.


Equal Opportunities

Sophos is committed to equality opportunity in all areas of its work. All qualified applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, marital status, race, religion, colour, age, disability or sexual orientation.

If you choose to explore this opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos.  If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights.  If you have any questions about Sophos’ data protection practices, please contact dataprotection@sophos.com.

At Sophos, we want every organization to be protected by innovative, next-generation IT security, even those who don't have a huge IT staff. We protect organizations of all sizes, all around the world by making enterprise-grade security that is simple to deploy, manage, and use. It is our passion, and something we are truly proud of.

Nearest Major Market: Manhattan
Nearest Secondary Market: New York City

Job Segment: Project Manager, Technology