Security Architect, Applied Technology Services

About The Position

Requirements

• 10+ years of experience in cybersecurity, with a strong focus on architecture and design
• Proven experience in an MSP or multi-client environment
• Deep expertise across: Microsoft Azure and Azure security best practices, Identity & Access Management (Entra ID / Azure AD), Endpoint security (Microsoft Defender suite), Networking, firewalls, and secure architecture design
• Hands-on experience with: Rapid7, Inforcer, Cisco Umbrella
• Strong understanding of: CIS Benchmarks, Zero Trust architecture, Security frameworks (NIST, ISO 27001, etc.)
• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience)

Nice To Haves

• One or more advanced certifications strongly preferred: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CCSP (Certified Cloud Security Professional), Microsoft Security Certifications (e.g., SC-100, SC-200), Azure Solutions Architect Expert (AZ-305)

Responsibilities

• Define, maintain, and evolve reference security architecture standards across client environments (cloud, hybrid, and on-prem).
• Design scalable, repeatable security frameworks aligned to CIS Benchmarks, Zero Trust principles, and industry best practices.
• Establish baseline security configurations for: Identity & Access Management (Entra ID / Azure AD), Endpoint Security (Microsoft Defender suite), Network Security (firewalls, segmentation, DNS protection), Data Protection & Compliance.
• Serve as a trusted advisor to clients, translating security strategy into actionable roadmaps.
• Lead security assessments and remediation planning leveraging tools such as Rapid7 and Inforcer.
• Develop and standardize security offerings within the MSP model (e.g., Secure Score improvements, vulnerability management programs).
• Act as the technical lead during security events and incidents, coordinating cross-functional response efforts.
• Provide guidance on containment, eradication, and recovery strategies.
• Conduct post-incident reviews and implement architectural improvements to prevent recurrence.
• Architect and optimize integrations across security tooling, including: Rapid7 (vulnerability management / SIEM), Microsoft Defender (Endpoint, Identity, Cloud), Cisco Umbrella (DNS-layer security), Inforcer (Secure Score and posture management).
• Partner with NOC, Engineering, and Security Operations teams to ensure effective alerting and escalation workflows, reduction of false positives, and alignment with ServiceNow-driven incident processes.
• Design and secure Microsoft Azure environments, including Azure networking and segmentation, Identity and conditional access policies, Defender for Cloud and cloud workload protection.
• Provide architectural oversight for server infrastructure (Windows/Linux), virtualization platforms, and backup and disaster recovery security considerations.
• Ensure client environments align with industry standards and regulatory expectations, particularly within the legal sector.
• Contribute to security policy development, standards, and documentation.
• Support audits, risk assessments, and compliance initiatives.

Benefits

• Respect We believe in treating everyone with dignity, kindness, and empathy. We foster an inclusive culture where diverse perspectives are valued, and mutual respect is the cornerstone of our interactions.
• Accountability We take ownership of our actions and decisions, acknowledging their impact on our team, the organization, and our clients. We strive for transparency and follow through on our commitments, fostering trust and reliability within our community.
• Collaboration We understand that working together yields the best results and that our parts are better together. We actively promote teamwork, open communication, and the sharing of ideas. By embracing diverse talents and perspectives, we create a supportive and innovative environment that encourages collective growth and empowerment.