Collaborate with business stakeholders to understand organizational objectives, operational procedures, and pain points.
Analyze user requirements, data flows, and existing system constraints to propose secure, efficient, and cost-effective solutions.
Conduct comprehensive studies and cost/benefit analyses to recommend alternative cloud security strategies.
Lead interviews and working sessions across units to capture requirements for system automation, security enhancements, and reporting.
Lead the end-to-end design and implementation of secure-by-default architectures for cloud-native, containerized, microservices, and AI/ML systems.
Integrate Identity and Access Management (IAM) and Zero Trust principles across enterprise systems.
Ensure that security controls and design patterns comply with TCF, NIST 800-53, and additional regulatory mandates.
Oversee the deployment, configuration, and management of Cloud Security Posture Management (CSPM) and other security tooling.
Embed security into DevSecOps pipelines, ensuring secure software development lifecycle (SDLC) practices.
Perform advanced threat modeling and risk assessments for highly complex, distributed environments.
Draft, maintain, and enforce enterprise security policies, architecture standards, and procedures.
Monitor, evaluate, and enhance security operations and controls to maintain compliance and address evolving threats.
Produce detailed documentation, including user needs, program functions, architectural diagrams, and implementation steps.
Present risk assessments, strategies, and complex technical concepts to executive leadership and non-technical stakeholders.

Requirements

8 years (Required): Experience in information security and systems architecture
8 years (Required): Proven experience designing secure cloud-native architectures (AWS preferred)
8 years (Required): In-depth knowledge of Texas Cybersecurity Framework (TCF) and NIST 800-53
8 years (Required): Expertise in Identity and Access Management (IAM) and Zero Trust Architecture
8 years (Required): Experience performing threat modeling for complex systems
8 years (Required): Experience securing microservices, APIs, and containerized environments
8 years (Required): Experience configuring cloud security posture management (CSPM) tools
8 years (Required): Experience integrating security into DevSecOps pipelines
Must be able to pass a background check.
May require additional background checks as required by projects and/or clients at any time during employment.
Minimum Skills: Exceptional interpersonal skills with the ability to communicate in a clear, professional, and articulate manner.
Exceptional verbal and written communication skills.
Excellent organizational, analytical, and problem-solving skills with high-level attention to detail.
Ability to analyze systems and procedures
Strong multitasking skills with the ability to manage multiple design streams across concurrent work effort.
Must be self-motivated and able to work well independently as well as on a multi-functional team.
Ability to handle sensitive and confidential information appropriately.

Benefits

Medical, Dental and Vision Insurance
Wellness Program
Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
Short-Term and Long-Term Disability options
Basic Life and AD&D Insurance (Company Provided)
Voluntary Life and AD&D options
401(k) Retirement Savings Plan with matching after one year
Paid Time Off

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cloud-native architectureIdentity and Access Management (IAM)Zero Trust Architecturethreat modelingcloud security posture management (CSPM)DevSecOpsmicroservicesAPIscontainerized environmentssecure software development lifecycle (SDLC)

Soft Skills

interpersonal skillsverbal communicationwritten communicationorganizational skillsanalytical skillsproblem-solving skillsattention to detailmultitaskingself-motivatedability to handle sensitive information