Job Title

Are you a hardworking Mergers and Acquisition (M&A) Security Architect seeking a new opportunity? This could be an excellent opportunity to exploreAon is in the business of better decisions.At Aon, we shape decisions for the better to protect and enrich the lives of people around the worldAs an organization, we are united through trust as one inclusive, diverse team, and we are passionate about helping our colleagues and clients succeed.What the day will look likeThe M&A Security Architect has responsibility for endtoend cybersecurity due diligence, risk quantification, and security integration/separation architecture for mergers, acquisitions, divestitures, joint ventures, and strategic partnerships. This role partners with Corporate Development, Legal, IT, Privacy, Compliance, Security Architecture and Engineering, Cybersecurity Operations, and Integrated Risk Management to:- Perform deep technical assessments of target environments- Identify and quantify material cyber risks and control gaps- Define desired and transitional security architectures- Lead implementation of security controls aligned with Aon standards from the initial phase through the first month and up to the 100-day markThe person in this role will be the primary technical authority for security across the deal lifecycle from initial diligence through integration or separation stabilization.Job Responsibilities:PreDeal Cyber Due Diligence- Lead endtoend technical security assessments across identity, network, endpoint, cloud/SaaS, data, and application security- Identify material risks- Review security evidence and artifacts- Assess security maturity against internal standards and leading frameworks- Produce executiveready risk summaries, findings, and recommendations (including go/nogo guidance and conditional close criteria)Transaction Risk & Deal Support- Translate technical findings into business and financial risk, including potential incident impact, operational disruption, regulatory/legal exposure, and reputational risk- Support Contracting, Legal, and Corporate Development with security requirements for TSAs and separations- Provide input on security and privacy clauses, minimum control baselines, representations and warranties, and remediation commitments- Estimate remediation effort, cost, and time, and feed these into valuation models, risk reserves, and integration budgetsIntegration & Separation Security Architecture- Design target and interim security architectures across identity and access, network, endpoint, email/collaboration, cloud, logging/monitoring, and vulnerability/patch management- Define secure integration and separation patterns for connectivity, identity consolidation/trust, tenant/organization alignment, and logging/SIEM/SOAR coverage- Develop Day 1 / Day 30 / Day 100+ roadmaps that prioritize highimpact controls and clearly distinguish preclose, Day 1ready, and postDay 1 activities- Map controls to enterprise security standards and document gaps, exceptions, and compensating controls during transitionSkills and experience that will lead to success.5 or more years of handson expertise using security technologies within a mid to large size company.Strong riskbased, pragmatic decisionmakingSystems thinking and ability to make architecture tradeoffs under time and information constraintsAbility to influence and negotiate outcomes across organizations without direct authorityComfort operating in ambiguity with incomplete data and high sensi