What is a Security Architect?

Mary McMahon
Mary McMahon

A security architect is a computing professional who focuses on maintaining security in a computer system. Security architects work in a variety of settings, securing corporate networks, government computer systems, and websites, and they are part of an overall information technology staff which is designed to keep a computer system relevant, current, and useful. To work as a security architect, it is usually necessary to have a bachelor's degree in computer science or computer engineering, along with specific training and certification in security architecture.

Woman doing a handstand with a computer
Woman doing a handstand with a computer

There are a number of aspects to a security architect's job. He or she must first review the system, gaining an understanding of how the system is used, who is using it, and where the weak points in the system may be located. The security architect thinks about how to improve an outdated system after reviewing it, or makes recommendations to toughen security on a relatively new system. These recommendations can include hardware and software upgrades as well as new protocols for the system's users.

Security architects set policies and enforce them, regularly checking for compliance. These policies can range from never leaving a workstation unattended while someone is logged into the computer system to always using an encryption protocol to collect sensitive information from customers over the Internet. The security architect wants basic security measures in place at all times and wants people to observe the protocols he or she establishes, and the system also has countermeasures in place which can become active when someone attempts to breach the system.

A good security architect is able to think like an attacker. He or she can look at a system and not only see conventional weak points, but potential areas which someone thinking outside the box can exploit. He or she also knows that the work of developing a good security architecture is never finished, because security needs are constantly evolving and changing, and it is necessary to be highly adaptable, and to avoid getting attached to particular approaches.

Every computer system and website has unique security needs which must be addressed. While some software suites provide basic security, for large or sensitive systems, it is necessary to hire a security architect to protect the system. As a member of the permanent staff of an organization, the security architect keeps the organization strong by keeping up with changes and trends in the security and computing fields.

Mary McMahon
Mary McMahon

Ever since she began contributing to the site several years ago, Mary has embraced the exciting challenge of being a EasyTechJunkie researcher and writer. Mary has a liberal arts degree from Goddard College and spends her free time reading, cooking, and exploring the great outdoors.

You might also Like

Discussion Comments


It's an interesting job, I think, since computer security must be ever changing and difficult to maintain. Not only do you have people on the outside looking for ways to break in, you've got people on the inside being lazy and even dishonest as well. Because a security architect isn't just responsible for guarding against hackers, they would also have to make sure that employees aren't doing anything harmful.

And considering the stats on how much the average employee uses the internet at work, that's probably a pretty big ask.


@MrsPramm - I think in most of those cases the hackers in question were teenagers who were acting like teenagers and only became consultants when they were adults.

And note the word consultant. I think most companies would be smart enough not to hire a recently reformed hacker to be their actual network security architect. As long as they've got someone who knows what he or she's doing, they would be more than capable of using the information provided by a hacker without actually giving them the power to change anything.


I think it's fairly ironic and kind of cool in a way that often hackers who once tried to attack companies for fun and profit are hired by the same companies to be their security architects, or at least to work with them to find weaknesses in the system.

It makes sense, of course, since there's no one who will be able to find weaknesses better than someone who used to exploit them. And I guess it's pretty good for hackers to see the inside of a company and all the people they are hurting when they attack one, since they might just see it as an anonymous entity rather than a collection of employees who have to feed their children and depend on the company for a paycheck.

But, on the other hand, I've always wondered how they can really trust those supposedly reformed hackers. I mean, what's to stop them putting a backdoor into all the systems and then exploiting it later?

Post your comments
Forgot password?