Jobs · Engineering · New York

Principal Solution Architect, Cyber Security

Bain & Company · New York, NY · Yesterday
HybridEngineering$169k–$206k/yrFull-time

About the role

We are proud to be consistently recognized as one of the world’s best places to work. You will join the Cyber Security experts within the Enterprise Technology team, part of Bain’s digital capabilities practice.

Responsibilities

  • Shape Architecture and Technology Strategy
  • Lead the definition of enterprise, security, cloud, and identity architectures that align cyber security with client business outcomes and risk appetite.
  • Develop cyber security strategies, target architectures, roadmaps, reference architectures, and operating models that enable secure modernization, cloud adoption, AI integration, and business resilience.
  • Translate complex security, technology, and business requirements into pragmatic security architectures and actionable implementation roadmaps.
  • Lead security architecture across hybrid environments, balancing legacy modernization with cloud-native and Zero Trust principles.
  • Select and integrate security technologies, cloud-native capabilities, and vendor platforms (AWS, Azure, GCP and leading cyber security vendors) into enterprise architectures to maximize business value while reducing cyber risk.
  • Apply structured threat modelling methodologies (e.g., STRIDE) to identify architectural risks early and design resilient security controls.
  • Serve as a trusted advisor to CISOs, CIOs, CTOs, Chief Architects, and senior executives on cyber security strategy, architecture decisions, and technology trade-offs.
  • Translate technical cyber risks and vulnerabilities into business risk and investment decisions that executive stakeholders can understand and act upon.
  • Bridge business priorities, regulatory requirements, and security architecture to enable innovation while managing enterprise risk.
  • Influence, coach, and mentor client security leaders, architects, and Bain teams to build sustainable cyber architecture capabilities.
  • Guide Bain consulting and client teams in embedding security architecture into large-scale business and technology transformation programs.
  • Design secure-by-design architectures for cloud, identity, applications, data, infrastructure, and AI-enabled solutions across hybrid environments.
  • Support clients in modernizing legacy environments by addressing technical debt, strengthening identity, authentication, PKI, and security controls.
  • Ensure security architectures evolve through agile delivery and MVP approaches while maintaining resilience, compliance, scalability, and operational effectiveness.
  • Partner with Bain consulting teams to integrate cyber security seamlessly into broader digital, cloud, and enterprise transformation initiatives.
  • Contribute to Bain’s intellectual property, thought leadership, and points of view on cyber security architecture, Zero Trust, cloud security, AI security, and emerging cyber technologies.
  • Help strengthen Bain’s reputation as a trusted advisor in cyber security strategy and architecture.
  • Support business development by providing cyber architecture expertise across proposals, pursuits, client workshops, and executive discussions.
  • Build trusted relationships with senior client stakeholders, industry partners, and the broader cyber security community.

Requirements

  • 10+ years of experience in cyber security, including security architecture, consulting, and technology leadership roles within large, complex organizations.
  • Proven experience designing and delivering enterprise security architectures across hybrid, cloud, and legacy environments.
  • T-shaped or U-shaped cyber security expertise, combining deep technical knowledge in one or more domains (e.g., cloud security, identity, SOC, application security, data security) with broad architectural understanding across the cyber landscape.
  • Demonstrated experience advising senior business and technology leaders on enterprise cyber security strategy and large-scale transformation programs.
  • Strong technical expertise across cloud security (Azure, AWS, GCP), identity and access management, Zero Trust, network security, data protection, application security, DevSecOps, security operations, and operational resilience.
  • Experience applying threat modelling methodologies (e.g., STRIDE) and secure-by-design principles to complex enterprise architectures.
  • Strong understanding of security frameworks and standards such as NIST CSF, ISO 27001, SABSA, MITRE ATT&CK, NIS2, CIS Controls, and relevant regulatory requirements.
  • Experience modernizing legacy environments, including authentication, PKI, identity architectures, and hybrid security models.
  • Exceptional communication, facilitation, and consulting skills with the ability to translate complex technical risks into business outcomes and executive decision-making.
  • Strong commercial awareness and pragmatic approach to balancing cyber risk, business objectives, and delivery constraints.

Qualifications

  • Relevant industry certifications (e.g., CISSP, SABSA, CCSP, Microsoft Cybersecurity Architect Expert, Azure Security Engineer, AWS Security Specialty, Google Professional Cloud Security Engineer) is highly desirable.
  • Passion for cyber security, business resilience, and continuous innovation, with a demonstrated ability to mentor teams and contribute to the broader cyber security community.
  • High emotional intelligence with proven experience leading, mentoring, and inspiring diverse, cross-functional teams.

Benefits

  • This role requires a minimum of three days per week working together in person, either at a client location or at your Bain home office.
  • Travel is required. This position requires regional travel away from your home office/primary working location. Travel frequency and destinations will vary based on project needs.
  • U.S. Compensation Information: Compensation for this role includes base salary, annual discretionary performance bonus, 401(k) plan with an annual employer contribution based on years of service and Bain’s best in class benefits package (details listed below).
  • Annual discretionary performance bonus: This role may also be eligible for other elements of discretionary compensation.
  • 401(k) company contribution: Bain & Company's comprehensive benefits and wellness program is designed to help employees achieve personal independence, protection and stability in the areas most important to you and your family. Bain pays 100% individual employee premiums for medical, dental and vision programs, offering one of the most comprehensive medical plans for employees without impacting your paycheck.
  • Generous paid time off: Generous paid time off, including parental leave, sick leave and paid holidays.
  • Fully vested 401(k) company contribution: Fully vested 401(k) company contribution.
  • Paid Life and Long-Term Disability insurance: Paid Life and Long-Term Disability insurance.
  • Annual fitness reimbursements: Annual fitness reimbursements.

Similar jobs