Lead Cybersecurity Architect with CISSP

Full time / direct hire hybrid role (onsite 3 days a week is a must).

Our direct client is seeking a CISSP Senior Lead Cybersecurity Architect to lead, advance and improve the firm's digital defenses. This individual will own and be responsible for the cybersecurity framework:

• Lead the strategic design, implementation, and maintenance of enterprise-class security systems for a dynamic production environment.
• Drive compliance and certification initiatives for multiple critical standards including ISO 27001, SOC 2 Type 2, GDPR, and PCI-DSS.
• Align security standards, frameworks, and best practices seamlessly with our overall business and technology strategies.
• Proactively identify, analyze, and communicate current and emerging security threats, developing architectural elements to mitigate risks effectively.
• Collaborate closely with software development leaders to embed the highest security best practices into our applications, addressing findings from tools like OWASP, SonarQube, and Qualys.
• Engineer innovative security solutions that expertly balance business requirements with robust information and cybersecurity needs.
• Identify and resolve security design gaps in both existing and proposed architectures, recommending strategic enhancements.
• Establish and oversee rigorous system tests and continuous monitoring of network and application security performance.
• Manage project timelines for critical security system upgrades and enhancements.
• Implement and enforce least-privilege access controls across all IT systems based on user roles and business necessity.
• Develop, test, and refine disaster recovery procedures, including conducting regular breach of security drills.
• Lead prompt responses to all security incidents, conducting thorough post-event analyses to prevent recurrence.

The successful candidate will have the following experience and knowledge:

• Demonstrated experience in cybersecurity, security architecture, or computer network defense, with a proven track record of delivering impactful security solutions.
• Expertise in security architecture principles, solution delivery, and the application of emerging security technologies.
• Demonstrated experience designing and implementing comprehensive digital security solutions, including continuous monitoring and iterative improvements.
• Deep knowledge and practical experience with relevant security standards: NIST frameworks, ISO 27001, SOC 2 Type 2 attestation, and PCI-DSS certification.
• Proven ability to consult, engineer, and implement robust security best practices across an organization, meeting both business goals and regulatory requirements.
• Comprehensive understanding of cloud computing security considerations (e.g., data breaches, authentication vulnerabilities, account hijacking, insider threats, APTs, data loss, DoS attacks), with AWS experience preferred.
• Experience in Identity and Access Management (IAM), including integrating security policies and technologies to control and track access to sensitive resources.
• Solid command of security principles across diverse operating environments.
• Strong critical thinking and root cause analytical skills to dissect complex security challenges.
• Demonstrated ability to identify and assess risks associated with business processes, operations, information security programs, and technology projects.
• Subject matter expertise in areas such as computer forensics, incident response, intrusion analysis, malware analysis, and/or security engineering.
• Hands-on experience handling advanced cybersecurity incidents and utilizing associated incident response toolsets.

• Additional Certifications in one or more of the following:
  • Certificate of Cloud Security Knowledge (CCSK)
  • Certified Ethical Hacker (CEH)
  • Certified Information Systems Auditor (CISA)
  • SANS-related certifications