The Security Architect will ensure that all systems, platforms, assets, and data across the organization are properly defined, mapped, and governed. This includes validating configuration correctness, ensuring data remains within its intended boundaries, and confirming that all system-to-system flows, integrations, and access patterns meet our security and architectural standards.
This is a systems and data-level architecture role that requires a strong understanding of how modern connectivity, SaaS environments, and security solutions operate, especially as organizations increasingly adopt AI-driven capabilities. The architect will help guide the company toward clearer visibility, stronger control, and more reliable, automated decision-making around connectivity and access.
Responsibilities
Map all organizational systems, data flows, integrations, and dependencies to create Zero Trust end-to-end architectural view.
Develop processes and frameworks for classifying systems, defining ownership boundaries, and ensuring consistent governance across environments.
Validate the correctness of access flows, connectivity rules, and system configurations to align with Zero Trust and other security best practices.
Build and maintain the data and architectural baselines.
Collaborate with engineering and product teams through processes such as Design Reviews.
Participate in vendor onboarding, architecture assessments, and ongoing governance processes.
Create High Level Design (HLD) for systems and technologies to be implemented by the SecOps, OPS, IT, and AppSec teams.
Contribute to the creation of clear documentation, diagrams, standards, and presentations for both technical and executive audiences.
Ensure alignment with frameworks such as NIST and similar industry standards (without serving as an audit or certification lead).
This is a systems and data-level architecture role that requires a strong understanding of how modern connectivity, SaaS environments, and security solutions operate, especially as organizations increasingly adopt AI-driven capabilities. The architect will help guide the company toward clearer visibility, stronger control, and more reliable, automated decision-making around connectivity and access.
Responsibilities
Map all organizational systems, data flows, integrations, and dependencies to create Zero Trust end-to-end architectural view.
Develop processes and frameworks for classifying systems, defining ownership boundaries, and ensuring consistent governance across environments.
Validate the correctness of access flows, connectivity rules, and system configurations to align with Zero Trust and other security best practices.
Build and maintain the data and architectural baselines.
Collaborate with engineering and product teams through processes such as Design Reviews.
Participate in vendor onboarding, architecture assessments, and ongoing governance processes.
Create High Level Design (HLD) for systems and technologies to be implemented by the SecOps, OPS, IT, and AppSec teams.
Contribute to the creation of clear documentation, diagrams, standards, and presentations for both technical and executive audiences.
Ensure alignment with frameworks such as NIST and similar industry standards (without serving as an audit or certification lead).
Requirements:
3-5 years of experience in Security Architecture, SecOps, GRC, or related domains.
Strong understanding of Zero Trust, SaaS ecosystems, modern IT environments, and cross-platform integrations.
Ability to think both abstractly and operationally, bridging conceptual models with practical enforcement.
Proven experience working in organizations similar to Cato with many cloud/SaaS systems.
Strong communication skills – ability to explain architectural concepts clearly, produce high-quality documentation, and build impactful presentations.
Collaborative mindset and experience working across multiple technical and business teams.
Strong cybersecurity orientation and understanding of the security lifecycle.
Familiarity with SSPM and CNAPP platforms.
Preferred Qualifications
Experience with FedRAMP and FIPS.
Familiarity with tools such as Jira, Slack, and other collaboration platforms.
Experience in advanced IT environments or security-heavy SaaS companies.
3-5 years of experience in Security Architecture, SecOps, GRC, or related domains.
Strong understanding of Zero Trust, SaaS ecosystems, modern IT environments, and cross-platform integrations.
Ability to think both abstractly and operationally, bridging conceptual models with practical enforcement.
Proven experience working in organizations similar to Cato with many cloud/SaaS systems.
Strong communication skills – ability to explain architectural concepts clearly, produce high-quality documentation, and build impactful presentations.
Collaborative mindset and experience working across multiple technical and business teams.
Strong cybersecurity orientation and understanding of the security lifecycle.
Familiarity with SSPM and CNAPP platforms.
Preferred Qualifications
Experience with FedRAMP and FIPS.
Familiarity with tools such as Jira, Slack, and other collaboration platforms.
Experience in advanced IT environments or security-heavy SaaS companies.
This position is open to all candidates.
