Lead Cybersecurity Integrated Architect

About The Position

Requirements

• Bachelor’s degree in a related discipline and 6 years of experience in a related field. The right candidate could also have a different combination, such as a master's degree and 4 years of experience; a Ph.D. and 1 year of experience in a related field; or 10 years’ experience in a related field.
• At least 4 years focused on cybersecurity.
• Relevant experience with designing, securing, or operating AWS infrastructure and services.
• Clearly articulate the objective of specific cybersecurity policies and procedures to technical and non-technical stakeholders.
• Excellent customer service skills, writing, and executive presentation skills.
• Develop a strong and productive working environment with key stakeholders and collaborate closely with other Cox entities’ cybersecurity teams to implement cybersecurity best practices.
• Consultative nature to work through controversial or complex topics to employees, leaders, and/or senior leadership.
• Evaluate risks and recommend actions based on impact and likelihood of the risk to the business.
• Knowledge of current cybersecurity and technology architectures such as zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, and software-defined networking across a variety of environments and deployments.
• Creatively solving complex cybersecurity challenges while exhibiting solid, pragmatic business acumen.
• Experience utilizing Agile methodologies.
• Initiating change and deploying solutions in Fortune 1000 companies.
• Knowledge of cybersecurity frameworks (e.g., ISO 27000, NIST, FFIEC) and industry relevant regulations that will guide architectural requirements (e.g., GDPR, FFIEC, GLBA).
• Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship. No OPT, CPT, STEM/OPT or visa sponsorship now or in future.

Nice To Haves

• Experience in the development and design of cybersecurity standard methodologies to all layers of the hosting and application stack in both cloud and on-premises environments.
• Knowledge of Identity and Access Management (IAM), cryptography / key management, secrets management, access controls and security protocols (e.g., multi-factor, SAML, OAuth, OIDC).
• Experience with application security implementations and standard methodologies.
• Extensive technology knowledge and recognized expertise in several areas including Python, .NET, Java, Spring frameworks, SQL/noSQL databases, serverless, cloud patterns, cloud service and user authentication or similar.
• Experience with firewall, web application firewalls, and other edge services as well as deep understanding of DMZ and other network architectures.
• A strong understanding of the AWS Well-Architected Framework.
• Experience establishing a strategy for and implementing cloud enterprise solutions in AWS, GCP, or Azure.
• A strong understanding of cloud containers and/or serverless platforms (e.g., EKS, ECS, Lambda, Fargate).
• Knowledge of AI/ML security principles including adversarial machine learning, prompt injection techniques, model security testing, and emerging AI threat landscapes
• Hands-on experience with agentic AI tools, security automation frameworks, or large language model applications for security analysis, code review, or threat detection
• Big four consulting or Fortune 500 company experience.
• Relevant industry certification (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CRISC).

Responsibilities

• Communicate cybersecurity guidelines to engineering and business teams and support their adoption of the guidelines.
• Be integrated with and in continuous contact with engineering teams to advise on their architecture decisions and assist with cybersecurity control implementation.
• Engage with cybersecurity peers to create a cohesive cybersecurity department and share back internally regarding business specific activities.
• Act as the on the ground cybersecurity security representative to the product and engineering teams.
• Partner with enterprise architecture, infrastructure and engineering teams to review existing architecture, identify gaps and recommend security enhancements.
• Design and implement agentic security review frameworks that leverage AI-powered tools to automate threat modeling, code analysis, and security requirement validation for new product features throughout the development lifecycle
• Lead AI red teaming initiatives to identify vulnerabilities, bias, prompt injection risks, and adversarial attack vectors in AI-powered features and machine learning systems prior to production deployment ensuring adherence to agreed upon guardrails.
• Participate in security events and incident response to identify gaps in current design and propose solutions to prevent threats from reoccurring.
• Support third‑party penetration testing engagements, including scoping definition, test execution oversight, and surfacing risk insights to stakeholders.
• Partner with the legal and security governance, risk and compliance teams to ensure that cybersecurity architecture enables compliance with relevant regulatory and contractual requirements.

Benefits

• The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members.
• Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.
• Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO).