Sr. Security Architect

Job Description

Company: i-Link Solutions

Location: Chantilly, US

Sr. Security Architect

Location: Frisco, TX (Onsite- local to TX or willing to relocate on own expenses)

Duration: 12 Months

Client is launching a critical, top-priority security modernization initiative. We are seeking a visionary Lead Cryptography & Next-Gen Infrastructure Security Architect to shield our cloud-native platforms from the next decade of digital threats.

This role operates at the cutting edge of frontier security engineering. You will spearhead our transition into Post-Quantum Cryptography (PQC), architect advanced privacy-preserving runtimes, implement real-time kernel-level observability, and construct highly secure AI/LLM inference pipelines.

Mandatory Niche Skillset

Candidates must possess direct, demonstrable experience in the following advanced domains:

◉ Advanced Cryptography: Production-grade implementation of Homomorphic Encryption, Secure Multi-party Computation (SMPC), and Zero Knowledge Proofs (ZKP).

◉ Kernel & Runtime Defense: Deep expertise in eBPF Security Monitoring and Runtime Application Self-Protection (RASP) frameworks.

Core Qualifications & Experience

⊛ 10+ years of progressive experience in enterprise cybersecurity architecture and infrastructure engineering.

⊛ Post-Quantum Strategy: Proven track record designing and implementing Post-Quantum Cryptography (PQC) strategies alongside robust crypto-agility frameworks.

⊛ Confidential Computing: Hands-on mastery of hardware-level Confidential Computing using Trusted Execution Environments (TEEs).

⊛ Identity & Zero Trust: Experience deploying Identity Threat Detection & Response (ITDR) solutions and establishing workload identities with SPIFFE/SPIRE for service-to-service authentication.

⊛ AI Pipeline Security: Hardened experience protecting live AI inference pipelines built on TensorRT-LLM and Triton Inference Server.

⊛ Cloud-Native Governance: Extensive familiarity managing Kubernetes-native security policies via Kyverno to guarantee multi-cluster policy-as-code enforcement.

⊛ Platform Engineering Integration: Experience embedding security guardrails natively into developer workflows utilizing Backstage IDP.

⊛ Cost Governance: Ability to design security structures that remain strictly aligned with enterprise FinOps principles.

Key Responsibilities

⊛ Crypto-Agility & Evolution: Formulate and roll out enterprise-wide, future-proofed cryptographic standards resilient against quantum threats.

⊛ Advanced Defense Deployment: Architect systems using SMPC, Homomorphic Encryption, and ZKPs to protect multi-tenant enterprise workflows.

⊛ Runtime Guardrails: Oversee deployment of eBPF-based security monitoring tools and RASP configurations to track and prevent active zero-day runtime exploits.

⊛ AI Infrastructure Hardening: Partner with AI/ML infrastructure squads to guarantee total data isolation and isolation boundaries for foundational large language models.

⊛ Cross-Functional Governance: Sync with risk management, platform infrastructure, and compliance leads to ensure alignment with standard threat modeling frameworks (STRIDE, MITRE Telecommunication&CK).

Notes: Please instruct candidates to provide a written response to the pre-screening questions below and attach it as a separate document alongside their resume.

If a candidate lacks direct experience with a specific tool or framework mentioned, they must explicitly state the alternative technologies they have utilized. Their response should clearly articulate how their experience with those alternative tools directly translates and remains relevant to the core technical requirements outlined in this Job Description. Submissions without this attached write-up will not be considered.

Pre-Screening Questions

Q1: Does he/she have experience Post-Quantum Cryptography (PQC) strategies and crypto-agility frameworks?

Q2: Does he/she have experience using Trusted Execution Environments (TEEs)?

Q3: Does he/she have experience leveraging SPIFFE/SPIRE for zero-trust service-to-service authentication?

Q4: Does he/she have experience in utilizing TensorRT-LLM?

Q5: Does he/she have experience in building policies using Kyverno?

Q6: Does he/she have knowledge of FinOps principles?

Q7: Does he/she has experience in implementation of Homomorphic Encryption, Secure Multi-party Computation (SMPC), and Zero Knowledge Proofs (ZKP)

Q8: Does he/she has experience in eBPF Security Monitoring and Runtime Application Self-Protection (RASP) frameworks.

Q9: Does he/she has experience with threat modeling frameworks (STRIDE, MITRE Telecommunication&CK)?

Disclaimer: i-Link Solutions Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. We especially invite women, minorities, veterans, and individuals with disabilities to apply. EEO/AA/M/F/Vet/Disability.

Source: LinkedIn