Security Architect, Cybersecurity, IT/OT Modernization

About The Position

Requirements

• 7–10+ years of experience in security architecture, enterprise cybersecurity engineering, or IT/OT architecture
• Experience working within or consulting to Energy & Utilities (electric, gas, or water) or other highly regulated industries
• Strong understanding of IT/OT convergence and industrial control systems (ICS) security
• Demonstrated experience designing, implementing, and evaluating enterprise cybersecurity tooling, including:
• IAM and identity governance
• Network security architecture and segmentation
• Endpoint detection technologies
• SIEM/SOAR and SOC tooling
• OT monitoring platforms (e.g., Dragos or similar)
• Cloud-native security solutions
• Experience modernizing and integrating security operations across hybrid environments
• Familiarity with AI-enabled security technologies and securing AI/ML infrastructure
• Experience with governance, risk, and compliance frameworks such as NERC CIP, IEC 62443, NIST, or ISO standards
• Strong executive communication and stakeholder engagement skills
• Ability to translate business and operational objectives into secure, scalable architectural solutions
• Willingness to travel for client engagements

Nice To Haves

• Prior consulting experience in a client-facing advisory role
• Experience leading IT/OT transformation programs
• Familiarity with emerging AI governance and model risk management frameworks
• Relevant certifications (CISSP, CISM, CCSP, cloud security certifications)
• Experience with platforms such as Splunk, Microsoft Sentinel, Google SecOps, Palo Alto, ServiceNow SecOps, SailPoint, Okta, CrowdStrike, or similar enterprise tools

Responsibilities

• Architect Secure IT/OT & Enterprise Environments
• Design secure, scalable architectures across converged IT and OT environments
• Secure integration of operational systems such as SCADA, EMS, ADMS, DERMS, and other industrial platforms with enterprise IT systems (ERP, CRM, analytics, cloud platforms)
• Develop security reference architectures supporting IT/OT convergence and infrastructure modernization
• Embed Zero Trust principles, segmentation, identity controls, and monitoring into modernized environments
• Lead Enterprise Cybersecurity Tooling Strategy
• Evaluate, select, design, and implement enterprise cybersecurity solutions across:
• Identity & Access Management (IAM) and privileged access
• Network security and micro-segmentation
• Endpoint detection & response (EDR/XDR)
• SIEM and SOAR platforms
• OT monitoring platforms (e.g., Dragos and other ICS security solutions)
• Data protection, DLP, and cloud security services
• Develop integrated tooling roadmaps aligned to business risk, regulatory requirements, and operational resilience
• Integrate OT and enterprise telemetry into unified SOC and monitoring environments
• Transform Cybersecurity Operations
• Assess and modernize IT and OT security operations capabilities
• Architect and implement SIEM, SOAR, and next-generation detection & response solutions
• Design SOC operating models that support hybrid IT/OT ecosystems
• Leverage automation, orchestration, and advanced analytics to enhance detection and response outcomes
• Design & Secure AI-Enabled Environments
• Evaluate and design AI-enabled solutions that enhance cybersecurity operations, including:
• AI-assisted threat detection and anomaly analysis
• Automated investigation and response workflows
• Predictive risk modeling and analytics
• Architect secure AI infrastructure that supports lines of business, ensuring:
• Secure model deployment environments
• Data protection and access controls for training and inference pipelines
• Monitoring and logging for AI systems
• Alignment to responsible AI and regulatory considerations
• Advise clients on risk management strategies for AI systems, including model integrity, data security, and operational resilience
• Strengthen Governance, Risk & Compliance
• Lead security posture and maturity assessments
• Design and implement programs aligned to frameworks such as: NERC CIP, IEC 62443 , NIST CSF / 800-53 , ISO 27001
• Align AI, IT, and OT security controls with regulatory and compliance requirements
• Support audit readiness and control validation initiatives
• Drive Client & Practice Impact
• Facilitate architecture workshops, security assessments, and executive strategy discussions
• Act as a trusted advisor to CIOs, CISOs, and operational leadership
• Support proposal development, solution design, and client presentations
• Contribute to development of IT/OT and AI security reference architectures and thought leadership

Benefits

• Employees (and their families) are covered by medical, dental, vision, and basic life insurance.
• Employees are able to enroll in our company’s 401k plan, purchase shares from our employee stock ownership program and be eligible to receive annual bonuses.
• Employees will also receive unlimited flexible time off and ten paid holidays throughout the calendar year.
• Eligibility for ten weeks of paid parental leave will also be available upon hire date.