The Cybersecurity Architect is responsible for the development and standardization of comprehensive security strategies to protect the organization’s network infrastructure, develop/test proper identification, and response procedures for the Operations team. This role requires a deep understanding of network protocols, security technologies, and industry best practices.
Essential Job Functions:
· Designs and implements secure network architectures, including firewalls, VPNs, Service Provider DDOS, intrusion detection systems (IDS), log management, general service provider access/infrastructure security suites, and other security devices
· Conducts risk assessments and security audits to identify vulnerabilities and recommend remediation strategies
· Develops security policies, standards, and procedures to ensure compliance with regulatory requirements
· Collaborates with Architecture, Engineering, and operational teams to integrate security into system design and development processes
· Establishes standards for monitoring network traffic for suspicious activity and respond to security incidents promptly
· Conduct red/blue team exercises
· Stays current with emerging threats, vulnerabilities, and technology trends in the cybersecurity landscape
· Conducts regular security assessments and vulnerability scans to identify potential risks and threats
· Provides technical guidance and operational and engineering groups regarding network security practices
· Documents network security configurations, processes, and incident response procedures
· Provides support and final escalation for operational and engineering groups
· Establishes lifecycles and budgets for all security equipment and products
· Monitors baseline of firmware for security risks across all supported hardware
· Leads change control by reviewing changes for technical accuracy and risk analysis
· Partners with external vendors on solution architecture and procurement
· Provides leadership to identify, manage, and resolve risks in a team environment
· Works independently with little supervision on day-to-day tasks, receiving general instructions on new assignments
· Travels to project areas, business related events, and other company sites locations as required
· Performs other duties as required.
Knowledge, Skills, and Abilities:
· Expert knowledge of firewalls, preferably Cisco (Meraki, ASA) and Palo Alto
· Expert knowledge of DDOS platforms and how they apply to Service Providers, preferably Deepfield
· Demonstrated knowledge of the SOC2, NIST, or ISO 27001 Cyber Security Framework and associated best practices
· Expert knowledge of packet traces, Sflow/Cflow
· Demonstrated knowledge of security best practices in multi-tenant environments
· Demonstrated knowledge of risk management for infrastructure as well as CPE equipment
· Excellent verbal and written communication skills to both technical and non-technical stakeholders
· Adept at strategic thinking, time management, and problem-solving
· Ability to travel for business requirements; must possess a valid Driver’s License with a satisfactory driving record.
Education and Experience:
BA or BS in information security, engineering, or related area or a minimum of 5 years in the service provider industry, with at least two of the preferred related certifications.
Preferred Certifications or equivalent:
· Certified Information Systems Security Professional (CISSP)
· GIAC Security Essentials Certification (GSEC)
· Systems Security Certified Practitioner (SSCP)
· Certified Information Security Manager (CISM)
Experience in creating and maintaining project plans highly preferred. Experience in cyber security and related infrastructure technologies, cloud-based infrastructure, and software defined networks required.