JOB PURPOSE:We are seeking a highly skilled and experienced Director of Cybersecurity Engineering and Architecture to lead and oversee our cybersecurity engineering and architecture initiatives. Amongst other elements of cybersecurity architectures, this role requires a deep understanding of
Zero Trust Network Access (ZTNA), identity and access management (IAM) engineering , implementation of and building secure, scalable infrastructures to protect against cyber threats. The ideal candidate will bring
hands-on expertise in both designing and implementing enterprise-level cybersecurity frameworks, as well as experience in vendor management, contract negotiations, and leading Proof of Value (POV) and Proof of Concept (POC) initiatives.
KEY RESPONSIBILITIES: - Evaluate current and future cyber architecture as it relates to infrastructure and applications, and lead the assessment of new technologies based on industry standards and frameworks
- Lead and manage a team of cybersecurity engineers and architects, ensuring a strong, efficient, and highly collaborative working environment.
- Provide regular technical guidance and direction to support the business to include engineering teams, product managers and vendors
- Develop and execute strategies for cybersecurity engineering, architecture, and design, with a focus on securing hybrid network infrastructures and data.
- Serves as function-wide subject matter expert in one or more areas of application or infrastructure security
- Oversee the design, implementation, and optimization of IAM solutions, ensuring secure authentication, authorization, and identity governance.
- Architect, deploy, and maintain ZTNA models to ensure secure access control across all systems, applications, and devices, minimizing the risk of insider threats and external attacks.
- Manage vendor relationships and evaluate third-party solutions for cybersecurity needs, ensuring the best fit for Client's cybersecurity strategy put forth by the CISO.
- Lead contract negotiations with cybersecurity vendors, ensuring favorable terms, SLAs, and compliance with organizational security policies.
- Lead POV initiatives for new cybersecurity tools and technologies, conducting thorough evaluations and testing to ensure their effectiveness and alignment with organizational needs.
- Work with contractors and other third parties to implement cybersecurity technologies.
- Monitor the usage and bandwidth consumption of various cybersecurity technologies to ensure compliance with entitlements
- Collaborate with other cybersecurity and IT teams to ensure end-to-end protection and compliance with industry standards like NIST, PCI, SOX and proactive threat detection and response.
- Provide leadership in creating, maintaining, and evolving the organization's cybersecurity strategy, aligning it with business objectives and technology evolution.
- Work closely with stakeholders across business operations to address security concerns and help shape security policies and procedures.
- Design and implement security frameworks that support both on-premise and hybrid environments, ensuring robust protection of sensitive data.
- Continuously evaluate and enhance security systems and technologies, staying current with the latest cybersecurity trends, threats, and best practices.
- Report to senior leadership on the effectiveness of the cybersecurity architecture and provide strategic recommendations to improve the security posture.
REQUIRED SKILLS & EXPERIENCES: - 10+ years of experience in cybersecurity engineering and architecture, with at least 5 years in a manager or director role.
- Strong expertise in Identity and Access Management (IAM) engineering, including IAM platforms such as Okta, Microsoft Entra, or others.
- Proven experience in the design, implementation, and operationalization of Zero Trust Network Access (ZTNA) frameworks.
- Extensive experience with vendor management, including evaluating, selecting, and managing relationships with third-party cybersecurity vendors.
- Proven track record of leading contract negotiations, ensuring favorable terms and compliance with organizational security needs.
- Hands-on experience leading Proof of Concept (POC) initiatives for cybersecurity technologies, with the ability to evaluate, test, and provide recommendations for new tools and systems.
- Extensive knowledge of network security, firewalls, encryption, VPNs, and endpoint security.
- Hands-on experience with security controls and protocols, such as Multi-factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management (PAM).
- Strong understanding of risk management, compliance, and governance frameworks related to cybersecurity.
- Ability to think strategically, lead large-scale projects, and provide hands-on leadership in the architecture and implementation of cybersecurity solutions.
- Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical stakeholders and senior leadership.
- Strong background in managing operational (opex) and capital (capex) budgets
- Proven track record of leading cross-functional teams and building a high-performance, results-driven cybersecurity engineering culture.
- Experience with cloud security (e.g., AWS, Azure, Google Cloud ) is desirable
- Familiarity with application security principles and practices is desirable
- Certifications such as CISSP, CISM, CISA, or similar are highly desirable
EDUCATION: - Bachelor's degree in computer science, Information Security, or a related field. A Master's degree is desirable
- Relevant certifications or professional training in cybersecurity architecture, IAM, or Zero Trust Network Access.
COMPENSATION/BENEFITS: - Competitive Compensation (Base + Bonus + Annual Stock Grant)
- Full Health Benefits (Medical, Dental, Vision)
- 401(k) Match (6%/3%)
- Discretionary Time Off (DTO)
- Health Savings Account (HSA) with company contribution
- Unlimited access to LinkedIn Learning
- College tuition reimbursement program
This job description is not intended to be all-inclusive. Employees may perform other related duties as needed to meet the ongoing needs of the organization.
