Company OverviewForcepoint simplifies security for global businesses and governments with an all‑in‑one, truly cloud‑native platform that enables Zero Trust and protects sensitive data and intellectual property anywhere.Role OverviewAs a Security Architect on the Infrastructure Security team within the CISO organization, you will own and administer the CISO security tool stack, design and implement security measures across endpoint, cloud, identity, email, and network environments, conduct risk assessments, and serve as a technical security partner to IT, Engineering, DevOps, and Cloud Operations teams.Key ResponsibilitiesPlatform Administration & Operations – Own and administer CISO‑managed platforms (EDR/XDR, CSPM, DSPM, DLP, Web/Email Security, EASM). Maintain platform health, coverage, and configuration; identify optimization opportunities; build and maintain automation workflows to improve response capabilities.Security Architecture & Design – Assess corporate and cloud environments, recommend improvements, and design controls that reduce risk across endpoint, identity, cloud, and network domains. Develop and maintain architecture documentation, reference designs, and technical standards. Evaluate new and existing technologies for adoption, integration, and configuration.Cloud, Vulnerability & Exposure Management – Assess and advise on security posture in AWS and Azure; partner with infrastructure teams to remediate misconfigurations. Oversee vulnerability management and continuous threat exposure management, prioritizing findings based on exploitability and business impact.Identity & Access Management – Assess identity controls across the environment, including SSO, MFA, conditional access, and privileged access. Identify risks and recommend improvements; support remediation with IT.Cross‑functional Collaboration – Act as the primary security technical partner to IT, Engineering, DevOps, and Cloud Operations on infrastructure‑related initiatives. Provide architectural guidance, support incident response, and collaborate with the SOC, GRC, and AppSec teams on compliance, audit, and vulnerability research.AI Usage – Actively use AI tools to accelerate research, scripting, documentation, and analysis; apply sound judgment about data handling and appropriate use. Stay current on AI‑specific security risks and contribute to internal governance and acceptable use practices.Qualifications5+ years of IT experience with at least 3 years in a dedicated security role.Hands‑on background spanning security and at least one adjacent IT or software engineering discipline: systems administration, network administration, cloud infrastructure, application security, DevSecOps, or application support.Breadth across the IT stack is more valuable than deep specialization.Experience administering and operating multiple enterprise security platforms in production environments.Familiarity with AWS and/or Azure security services and cloud security concepts.Strong written and verbal communication skills; able to translate technical findings into clear risk language for a range of audiences.Active daily use of AI tools with demonstrated ability to apply responsibly and effectively.Preferred Skills:Experience with Forcepoint security products (Cloud Web, Cloud Email, DLP, DSPM) or comparable enterprise platforms.Familiarity with CrowdStrike Falcon across EDR, Identity Protection, and Cloud Security modules.Experience working alongside IT, Cloud Operations, DevOps, SOC, GRC, or AppSec teams in a technical advisory or support capacity.Security certifications such as CISSP, CCSP, AWS Security Specialty, CISM, or GIAC – preferred but not required.Education – A bachelor’s degree in Computer Science, Information Technology, Information Security, or a related field is preferred; equivalent professional experience may be considered.Location & Work ModelPrimary location: Cork, Ireland. Hybrid work model with occasional travel (