Cybersecurity Architect

About The Position

Requirements

• Ability to lawfully access information and technology that is subject to US export controls
• BS in Cybersecurity or related technical field with 5+ years of relevant industry experience (9+ years’ experience in lieu of degree).
• Expertise in network security design, deployment, and maintenance.
• Deep understanding of IT/OT Networks architecture and technologies, including ZTNA, ABAC, Microsegmentation, and IEC 62443 Zones.
• Professional experience in a Security Operations Center (SOC) or similar environment offering cybersecurity services.
• Strong problem-solving skills with the ability to troubleshoot security issues and provide user support.
• Excellent communication and interpersonal skills.
• Flexibility and willingness to work overtime, including weekends and overnight as needed.
• At least one DoD baseline security certification, such as CISSP, Sec+, A+Sec, OR the ability to rapidly receive such certification.

Nice To Haves

• Certifications Certified Information Systems Security Professional (CISSP) or OSCP.
• Project management experience with the capacity to manage multiple projects and meet deadlines under pressure.
• Professional technical leadership in a security operations center (SOC) or similar cybersecurity service.

Responsibilities

• Develop and enforce comprehensive security policies, rule sets, and zone segmentation aligned with Zero Trust principles.
• Act as the top-tier subject matter expert for all security engineering, configuration, and troubleshooting.
• Ensure alignment with federal Cybersecurity Maturity Model (CMMC2) / NIST 800-171 framework, as it relates across all security architectures, policies, and procedures.
• As directed by leadership, implement STIGs and other security baselines to corporate systems, architecture, and applications.
• In association with the Network Engineer, design, implement, and maintain firewalls
• In association with the Network Engineer, develop and enforce security policies for corporate IT, OT, and guest wireless networks, ensuring proper segmentation, secure authentication protocols, and encryption methods are in place.
• Architect and optimize secure remote access solutions, utilizing Cisco ISE or similar enterprise VPN technologies, ensuring least privilege and multi-factor authentication (MFA) are implemented properly.
• Lead the design, tuning, and integration of device logs into an enterprise SIEM.
• Develop advanced correlation rules, alerts, dashboards, and reporting mechanisms to identify, prioritize, and track security threats and anomalies.
• Conduct post-incident reviews to identify architectural gaps and define security enhancements.
• Create and maintain and collaborate on enterprise-wide security standards, control baselines, and reference architectures.
• In association with the ISSM, develop, maintain, and test an Incident Response Plan and playbooks.
• In association with the ISSM, conduct regular security assessments and define remediation strategies to address control deficiencies.

Benefits

• Holistic Compensation Package: Enjoy a world-class compensation package that includes a competitive salary, equity plan, and discretionary results-based incentive bonus opportunities, ensuring you're truly valued for your contributions.
• Wellness and Time Off: Embrace a healthy lifestyle with paid vacation, sick time, and company holidays, including a year-end shutdown to recharge. We support growing families with paid parental leave, recognizing the importance of bonding time.
• Comprehensive Health and Wellness: Prioritize your well-being with our comprehensive health and wellness benefits, offering both HMO and Premium PPO options. Additionally, benefit from company-sponsored life insurance and short and long-term disability coverage for peace of mind.
• Investment in Growth: We're committed to your professional development. Take advantage of reimbursement opportunities for learning and development initiatives, empowering you to continuously expand your skill set and reach peak performance.
• Collaborative and High-Performing Environment: Join our collaborative, dynamic, and high-performing team within a fast-paced, mission-driven company. Together, we're disrupting the traditional manufacturing industry, fostering innovation, and integrating people and technology to reduce our footprint.