Information Security Architect

About The Position

Requirements

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field preferred.
• 8+ years of professional experience in cybersecurity, with at least 4 years as a security architect in a complex enterprise environment.
• Proven experience collaborating with third-party security vendors or MSPs
• Strong expertise in security operations, incident response, threat detection, and investigative methodologies
• Deep understanding of network security, identity & access management (IAM), data protection, and encryption technologies
• Strong experience with cloud security architecture in Azure
• Experience or deep understanding of manufacturing technologies and the security requirements around Operational Technology, SCADA and other control system environments
• Proven knowledge of security frameworks and standards such as NIST, ISO 27001, CIS, ISA 62443 and MITRE ATT&CK
• Experience and understanding of various regulatory requirements and laws, including but not limited to: Payment Card Industry (PCI), ISA 62443, Health Insurance Portability and Accountability Act (HIPAA), and General Data Protection Regulation (GDPR).
• Certifications such as CISSP, CISA, or CISM required.
• Familiarity with secure software development lifecycle (SDLC) and DevSecOps principles
• Strong analytical, relationship management, and communication skills (both written and verbal).
• Ability to collaborate across functions and influence stakeholders

Responsibilities

• Lead the design and evolution of enterprise security architecture to address emerging threats and compliance requirements.
• Collaborate with leadership, engineering, cloud, and infrastructure teams to integrate security into technology solutions and roadmaps.
• Drive security architecture for cloud (Azure), on-prem, hybrid, and containerized environments.
• Define and maintain security policies, standards, and reference architectures.
• Evaluate emerging security technologies and make recommendations for adoption.
• Conduct threat modeling, risk assessments, and gap analysis to improve the company’s security posture.
• Serve as a security advisor to enterprise projects and ensure alignment with security best practices.
• Provide Information Security consulting services on Company projects and initiatives
• Act as Subject Matter Experts on Information Security requirements for IT and OT.
• Partner with Company Legal and Sourcing departments on security requirements in Company contracts and agreements, and interface with Customers and other external parties responding to their assessments of security controls
• Perform Information Security Risk Assessments of Company projects, Vendors/Suppliers, compliance initiatives and new technologies.
• Develop and socialize Security Architecture Roadmaps control requirements and functional requirements.
• Collaborate with MSP on ensuring security principles are maintained

Benefits

• Medical, Dental, Life insurance
• Flexible Spending Accounts
• Short-term and Long-term Disability
• 401(k) and Company-funded retirement contributions
• Paid Time Off