Security Architect

The Apex Group was established in Bermuda in 2003 and is now one of the world’s largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide. Your career with us should reflect your energy and passion.

That’s why, at Apex Group, we will do more than simply ‘empower’ you. We will work to supercharge your unique skills and experience.

Take the lead and we’ll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

Apex is looking for an experienced Security Architect to join our growing Enterprise Security Architecture team. You’ll play a key role in designing and guiding the implementation of secure technology solutions across the organization. This role contributes directly to building scalable, resilient, and secure systems that support Apex’s business and regulatory commitments.

• Design secure architecture patterns aligned to Apex’s technology roadmap and business goals.
• Act as the security design authority for assigned projects, initiatives, or architectural domains.
• Translate security policies and standards into practical design controls and implementation guidance.
• Evaluate new technologies, products, and platforms for alignment with enterprise security strategy.
• Conduct architecture risk assessments and threat modelling to identify potential exposures.
• Engage with InfoSec, Cloud, infrastructure, application, and data teams to support secure solution design and integration.
• Document and maintain security architecture artefacts including diagrams, control mappings, and design decisions.
• Contribute to the development of security reference architectures and reusable design templates.
• Stay current on emerging threats, vulnerabilities, and technology trends.
• Execute delegated tasks as deemed appropriate by the Group CISO and other empowered Group Cyber leadership authorities, ensuring timely and effective completion in alignment with organizational priorities.
• Support the Group Cyber Strategy end-to-end, driving alignment of all activities, decisions, and deliverables with strategic objectives and business outcomes.

You will focus on one of the following domains, depending on the role fit:

• Security Architect – Cloud & Infrastructure: Focused on secure deployment and integration across hybrid/multi-cloud environments, network security, IaaS/PaaS/SaaS controls, and cloud governance.
• Security Architect – Application Security: Focused on secure software architecture, threat modelling, DevSecOps, API and identity design, and integration with CI/CD toolchains.
• Security Architect – Data, AI & Tokenization: Focused on data classification, privacy‑enhancing technologies, encryption/tokenization, AI governance, and secure data pipeline design.
• Security Architecture Advisory Services: Provides strategic and technical guidance across domains to align security architecture with business objectives. Focus areas include enterprise security design, zero trust principles, risk‑based decision‑making, and integration of security into digital transformation initiatives.

• 10+ years of overall experience in cybersecurity or infrastructure/application roles, with 5‑7 years in architecture, design, or engineering roles involving security.
• Experience architecting secure systems in large or complex enterprise environments.
• Hands‑on exposure to one or more of: AWS, Azure, OCI, Kubernetes, IAM, CI/CD, API gateways, SIEM/SOAR, Mail security, EDR, ZTNA technologies or data security technologies.
• Strong understanding of security principles, design patterns, and defence‑in‑depth strategies.
• Working knowledge of relevant security standards and frameworks (e.g. NIST, ISO 27001, CSA CCM, MITRE ATT&CK, SOC2, OWASP Top10).
• Ability to communicate technical risks and architectural decisions to both technical and non‑technical audiences.
• Architectural qualifications (e.g., SABSA, TOGAF, or similar) are key to success in this role.
• Professional certifications are beneficial (e.g. CISSP, CCSP, Azure/AWS Architect) and architectural qualifications are key.

• Opportunity to work with senior security professionals across multiple global teams.
• Exposure to modern technologies and enterprise‑scale transformation projects.
• Flexible work options and a strong focus on team collaboration and growth.
• A chance to help shape the security architecture function within a growing organisation.

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.