Job Purpose:
The job holder is responsible to lead the design and delivery of scalable, secure and high-performance application and data solutions. Balancing stability with innovation, the job holder defines and enforces enterprise architecture frameworks that ensure modularity, reusability, and compliance with governance and security standards. Responsible for evaluating technology stacks, managing architectural risks, supporting digital transformation, and providing oversight for critical projects, and also collaborates with cross-functional teams and mentors architects to build future-ready, resilient and business-critical systems that support round the clock operational environment
Key Responsibility:
- Infrastructure Architecture
- Define target‑state infrastructure architecture across data centres, networks, compute, storage, and end‑user platforms.
- Lead infrastructure modernisation initiatives including data centre optimisation, virtualisation, and platform rationalisation.
- Ensure high availability, disaster recovery, backup, and business continuity architectures are designed and governed.
- Establish infrastructure standards, patterns, and reference architectures.
- Design and govern cloud architectures across Microsoft Azure, and Oracle Cloud Infrastructure (OCI).
- Define and implement cloud landing zones, including account/subscription structure, network segmentation, IAM models, logging, and shared services.
- Architect hybrid and multi-cloud connectivity using VPN, Direct Connect, ExpressRoute, FastConnect, and SD-WAN technologies.
- Guide cloud migration strategies (re-host, re-platform, re-architect) ensuring security, resilience, and cost optimisation.
- Drive FinOps practices, cloud cost governance, and performance optimisation.
- Establish cloud resiliency patterns including multi-AZ, multi-region, backup, and DR strategies.
- Cyber Security Architecture (Next-Generation Platforms)
- Define end-to-end cyber security architecture across on-premise and cloud environments.
- Architect Zero Trust security models covering identity, device, network, and application layers.
Design and govern next-generation security platforms including:
- Next-Generation Firewalls (NGFW)
- Secure Access Service Edge (SASE) / SSE
- Cloud Security Posture Management (CSPM)
- Cloud Workload Protection Platforms (CWPP)
- Identity & Access Management (IAM) and Privileged Access Management (PAM)
- Endpoint Detection & Response (EDR / XDR)
- Data Loss Prevention (DLP) and encryption platforms
- Define security controls for cloud services including encryption at rest and in transit, key management, secrets management, and secure APIs.
- Partner with SOC teams on SIEM/SOAR integration, threat detection, and incident response architecture.
- Act as the architectural authority for infrastructure, cloud, and cyber security decisions.
- Provide architectural oversight and guidance for critical IT projects, ensuring adherence to frameworks and best practices defined
