IT Risk & Security Architect
About The Position
IT Security Vulnerability and Patch Management Architect is a senior, high-visibility role within the Global IT Risk & Security team, responsible for advancing and standardizing vulnerability management across a large, global IT and OT environment. The role acts as the product owner for the Rapid7 platform, driving strategy, architecture, optimization, and lifecycle management while supporting visibility and risk reduction across roughly 90,000 assets. This position partners closely with infrastructure, manufacturing IT, engineering, and plant-level teams to influence remediation outcomes, mature best practices, and address complex challenges such as legacy systems and uptime-critical environments. Blending deep technical expertise with leadership through influence, the architect serves as a trusted advisor, helps modernize reporting and processes, and enables the organization to measurably reduce enterprise security risk. Why This Role Matters Reduces enterprise cyber risk at scale: Owns and advances vulnerability and patch management across a large global IT and OT footprint, directly improving risk visibility, prioritization, and remediation effectiveness. Drives transformation and consistency: Leads the maturation and standardization of vulnerability management practices, modernizing platforms, reporting, and processes to enable better operational and strategic decision-making. Influences outcomes across complex environments: Partners with infrastructure, manufacturing IT, engineering, and plant teams to overcome legacy system and uptime constraints, driving remediation progress without direct authority. Provides strategic technical leadership: Combines hands-on expertise with leadership through influence, serving as a trusted advisor, mentoring team members, and shaping long-term vulnerability management strategy.
Requirements
- Bachelor’s degree or equivalent experience in Information Systems, Computer Science, Engineering, Technology, Business Administration, or a related field.
- 7+ years of professional experience in cybersecurity, vulnerability management, or related IT security disciplines.
- Hands-on experience administering and operating the Rapid7 platform (InsightVM/Nexpose or broader Rapid7 capabilities), including configuration and ongoing management.
- Experience working in complex enterprise environments, with exposure to manufacturing or operational technology (OT) systems and high-availability or legacy infrastructure.
Responsibilities
- Own and manage the Rapid7 vulnerability management platform, including strategy, configuration, lifecycle management, optimization, and vendor engagement.
- Drive the maturity and standardization of vulnerability and patch management practices across global IT and OT environments to reduce enterprise risk.
- Lead platform engineering and continuous improvement efforts, ensuring accurate data collection, analysis, reporting, and actionable insights.
- Partner with infrastructure, manufacturing IT, engineering, and plant-level teams to influence remediation outcomes in complex, uptime-critical environments.
- Monitor vulnerability risk trends, proactively engaging stakeholders to address rising risk and improve remediation effectiveness.
- Provide strategic leadership and enablement, including documentation, training, reporting modernization, and informal mentoring of team members.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
