Enterprise Architect (Security)

Job Summary

Zurich Life Assurance is looking for an Enterprise Architect (Security).

The Enterprise Architect (Security) will be accountable for ensuring secure designs and governance within ZLAP IT’s evolving architecture, ensuring that new and existing technologies adhere to Zurich’s Information Security and Data Assurance Policies. Additionally, they will be accountable for the secure delivery of IT projects, working closely with both ZLAP IT and wider ZLAP teams, and ensure that operational platforms and project outcomes meet Zurich’s unified IT, data, and third-party control requirements to support secure and resilient digital operations.

This role may be available part-time or full time. This is because we want the best people for our roles, and we recognise that sometimes those people aren’t available full-time.  Please talk to us at interview about the flexibility you may need.

Your Role

As an Enterprise Architect (Security) your main responsibilities will include, but not necessarily be limited to, the following:

Security Accountability for new Projects & Initiatives

• Design, oversee and govern the introduction of any new projects or initiatives to Zurich’s information security and data policy standards, both within the IT team and the wider teams.
• Review new solutions to ensure design alignment with Zurich’s consolidated IT controls, identifying any gaps and ensuring all gaps are remediated appropriately.
• Drive and monitor remediation plans, ensuring that risk‑mitigating measures are understood, owned, and implemented by delivery teams.
• Signoff assurance that architectural decisions, third-party integrations, APIs, and cloud services introduce no new cyber exposures to ZLAP.
• Provide architectural security direction throughout the project lifecycle: initiation, design, build, deployment, and transition into BAU.

Strategic Security by Design Architecture Leadership

• Define and maintain the target IT architecture, ensuring alignment with business strategy, digital KPIs, and regulatory requirements.
• Direct the security designs and deployments of new strategic technologies (e.g., Salesforce, Mulesoft, cloud platforms) while maintaining operational resilience for legacy systems.
• Ensure all integration of business services and processes through reusable APIs, or legacy integration platforms adhere to Zurich’s security policy standards

Secure Application Strategy & Integration

• ZLAP deploys architectural principles to reduce complexity: de-duplicate, decouple, and externalize core services. Your accountability is to ensure these deliveries adhere to Zurich’s Information Security polices and guidelines

Secure Technology Platform Oversight

• Oversee the secure implementation and optimization of key technology platforms, including: Customer/partner engagement platforms (e.g., Salesforce, Zurich portals, sales toolkits).
• API and integration technologies (Mulesoft, web services)
• Backend policy administration and servicing platforms (Salesforce, Life400, VPMS, BRC, automated underwriting, data lake, fund administration, document management system)
• Collaborate with ongoing modernization projects (e.g., Calcs platform, Group Risk policy admin, document storage and rendering, payroll enhancements) to ensure they adhere with Information Security Policies and guidelines

Stakeholder Engagement & Communication

• Collaborate with business, IT, and external partners to ensure architectural decisions meet business needs and strategic objectives.
• Communicate architectural vision, roadmaps, and progress to technical and non-technical stakeholders.

Governance & Best Practice

• Promote the adoption of group standard solutions where appropriate, seeking alternatives only by exception.
• Foster business unit convergence for shared solutions (e.g., content management, code repositories, project management tools).
• Champion a “Rent > Buy > Build” philosophy, prioritizing secure cloud-based solutions, then industry-standard packages, then custom builds.
• Ensure future-proofing by adopting technologies with market longevity and reducing key person dependencies.
• Maintain support for legacy technologies to ensure data security and operational resilience

Key Deliverables

•    Security governance signoff including control‑alignment reviews and signoff for new systems and platforms.
•    Collaboration with architects to ensure ZLAP’s architectural documentation enforces security by design principles 
•    Responsible for delivering Metrics and KPIs that measure ZLAP’s adherence to Information security and operational resilience standards
•    API frameworks and integration patterns supporting reusable, decoupled services.
•    Governance models for technology selection, platform convergence, and lifecycle management.
•    Oversight and guidance for modernization and transformation projects (e.g., platform upgrades, system replacements, cloud migrations).

Your Skills and Experience

As an Enterprise Architect (Security) your skills and qualifications will include: 

•    Proven experience operating as a Security Enterprise Architect or Senior Solution Security Architect in a highly integrated digital organisation. Experience in a regulated environment preferrable. 
•    Proven experience in IT security governance, including assessment of new systems against enterprise controls.
•    Qualification in IT Security (e.g., CISSP, CISM, CISA, or operating an organisation to ISO 27001 certification / SOC II standards. 
•    Experience conducting or supporting risk assessments, threat modelling, and secure solution design.
•    Understanding of regulatory frameworks or assurance frameworks e.g. GDPR, cloud security standards.
•    Familiarity with DevSecOps practices, CI/CD tooling, and secure coding standards.
•    Demonstrable experience introducing new IT platforms into complex operating environments.
•    Expertise in application architecture, integration, and API management (particularly Mulesoft).
•    Strong understanding of architectural principles: decoupling, reuse, convergence, future‑proofing.
•    Excellent stakeholder management and communication skills, especially bridging security, architecture, and delivery teams.

Education

•    Computer Science graduate or demonstrative equivalent

Additional Information

Primary work location is Zurich House, Blackrock. Position is Blackrock-based but occasional travel may be required to other Zurich locations.

If you value an exciting and varied working environment and meet the above requirements, then our recruiter is looking forward to receiving your application by clicking on the button “Apply online”.

Who we are 

Zurich is one of Ireland's leading insurance companies providing a wide range of general insurance and life insurance products and services. The company employs over 1,000 people across its locations in Dublin and Wexford. 

Zurich is a strong brand – with our 53,000 employees worldwide form the basis of our success, helping our customers in 210 countries and territories to understand and protect themselves from risk. In order to deliver our services, we offer our employees flexible working models and interesting opportunities for further training & development. As a Zurich employee you benefit from a multitude of advantages as well as a strong culture, characterized by acceptance, diversity and team spirit.
 
At Zurich, we foster a culture of diversity and inclusion. Our purpose and values are designed to protect, inspire confidence and help our employees reach their full potential. We value and defend what is right and promote opportunities for equity among our professionals, regardless of gender, disability, LGBTQ +, race, ethnicity, generations, belief, etc. Join Zurich and be part of this culture. Together we are committed to delivering on our purpose - Let’s Create a Brighter Future Together!