Lead Cybersecurity Integrated Architect

About The Position

Requirements

• Bachelor's degree in a related discipline and 6 years of experience in a related field.
• At least 4 years focused on cybersecurity.
• Relevant experience with designing, securing, or operating AWS infrastructure and services.
• Ability to clearly articulate the objective of specific cybersecurity policies and procedures to technical and non-technical stakeholders.
• Excellent customer service skills, writing, and executive presentation skills.
• Ability to develop a strong and productive working environment with key stakeholders.
• Consultative nature to work through controversial or complex topics.
• Evaluate risks and recommend actions based on impact and likelihood of the risk to the business.
• Knowledge of current cybersecurity and technology architectures such as zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, and software-defined networking.
• Creatively solving complex cybersecurity challenges while exhibiting solid, pragmatic business acumen.
• Experience utilizing Agile methodologies.
• Initiating change and deploying solutions in Fortune 1000 companies.
• Knowledge of cybersecurity frameworks (e.g., ISO 27000, NIST, FFIEC) and industry relevant regulations (e.g., GDPR, FFIEC, GLBA).

Nice To Haves

• Experience in the development and design of cybersecurity standard methodologies to all layers of the hosting and application stack in both cloud and on-premises environments.
• Knowledge of Identity and Access Management (IAM), cryptography / key management, secrets management, access controls and security protocols (e.g., multi-factor, SAML, OAuth, OIDC).
• Experience with application security implementations and standard methodologies.
• Extensive technology knowledge and recognized expertise in several areas including Python, .NET, Java, Spring frameworks, Oracle, serverless, cloud patterns, cloud service and user authentication.
• Experience with firewall, web application firewalls, and other edge services as well as deep understanding of DMZ and other network architectures.
• AWS Well-Architected Framework.
• Experience establishing a strategy for and implementing cloud enterprise solutions in AWS, GCP, or Azure.
• A strong understanding of cloud containers and/or serverless platforms (e.g., EKS, ECS, Lambda, Fargate).
• Experience in national critical infrastructure industries (telecommunications, financial services, defense, government, etc.).
• Big four consulting or Fortune 500 company experience.
• Relevant industry certification (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CISA).

Responsibilities

• Communicate cybersecurity guidelines to engineering teams and business teams and support their adoption of the guidelines.
• Be integrated with and in continuous contact with engineering teams to advise on their architecture decisions and assist with cybersecurity control implementation.
• Contribute to the identification and mitigation of cybersecurity risks based on threat modeling of products and enterprise tools.
• Provide cybersecurity architecture advice and consultation across major program and solution levels.
• Engage with cybersecurity peers to create a cohesive cybersecurity department and share back internally regarding business specific activities.
• Act as the on the ground cybersecurity security representative to the product and engineering teams.
• Partner with enterprise architecture, infrastructure and engineering teams to review existing architecture, identify gaps and recommend security enhancements.
• Participate in security events and incident response to identify gaps in current design and propose solutions to prevent threats from reoccurring.
• Educate product and enterprise architects and engineers on cybersecurity best practices and standards.
• Partner with the legal and security governance, risk and compliance teams to ensure that cybersecurity architecture enables compliance with relevant regulatory and contractual requirements.

Benefits

• Flexible vacation policy allowing employees to take as much vacation with pay as they deem consistent with their duties.
• Seven paid holidays throughout the calendar year.
• Up to 160 hours of paid wellness annually for their own wellness or that of family members.
• Additional paid time off for bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.
• Health care insurance (medical, dental, vision).
• Retirement planning (401(k)).
• Paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO).