Job Description
Cybersecurity Architect
We are seeking a highly skilled Cybersecurity Architect to provide technical expertise in designing and implementing security controls across both Operational Technology (OT)/Industrial Control Systems (ICS) and IT environments. This role is critical in ensuring our organization’s systems are secure and resilient against emerging threats.
Key Responsibilities:
- Design, build, implement, and support enterprise-class security systems.
- Serve as a technical liaison, aligning IT and OT units to ensure security best practices are followed.
- Identify and communicate current and emerging security threats, designing architecture elements to mitigate them.
- Plan, research, and design robust security architectures for IT projects.
- Perform and supervise vulnerability testing, risk analyses, and security assessments.
- Create solutions that balance business requirements with cybersecurity needs.
- Identify security design gaps in existing and proposed architectures, recommending necessary changes.
- Provide guidance to security and IT teams, updating security policies, procedures, and standards as needed.
- Respond to security-related incidents with thorough remedial solutions and analysis.
- Keep up-to-date with the latest cybersecurity trends, threats, and technologies, offering guidance accordingly.
- Create detailed diagrams, implementation plans, processes, and procedures to document network architecture and the operation of security solutions.
Required Experience:
- Minimum 10 years of progressive experience in technology and cybersecurity.
- At least 5 years of experience with cybersecurity systems.
- At least 5 years of experience with OT/ICS systems, preferably within critical infrastructure sectors such as energy, utilities, or transportation.
- Experience with OT/ICS communication protocols (e.g., DCS, PLCs, Modbus, OPC, SCADA).
- Demonstrated experience in security risk management, network security, identity and access management, and security monitoring technologies.
- Strong knowledge of network protocols (TCP/IP, UDP, DHCP, DNS, HTTP) and cryptology (e.g., IPSEC, AES).
- Experience presenting cybersecurity information to diverse stakeholders.
Desired Skills and Knowledge:
- Proficiency in implementing and managing security frameworks like NIST, ISO, and CIS.
- Familiarity with OT/ICS systems design and administration.
- In-depth knowledge of network security standards and compliance with corporate security policies.
- Experience with ethical hacking, penetration testing, and cybersecurity frameworks like MITRE ATT&CK.
- Knowledge of cloud computing security and the challenges of workload transition.
- Understanding of DevOps methodology and its integration with security practices.
Stronger candidates will have one or more of the following certifications:
- Certified SCADA Security Architect (CSSA)
- GIAC certifications (e.g., GICSP, GRID)
- ISA/IEC 62443 Cybersecurity Certificates
- Networking certifications (e.g., CCNA, CCNP)
- Cybersecurity certifications (e.g., CEH, CISA, CISM, CCSP)
Working Conditions:
- Primarily office-based with occasional fieldwork.
- Occasional travel required for meetings and site visits.
- Must be able to work additional hours as needed, in various weather conditions
LRS is an equal opportunity employer. Applicants for employment will receive consideration without unlawful discrimination based on race, color, religion, creed, national origin, sex, age, disability, marital status, gender identity, domestic partner status, sexual orientation, genetic information, citizenship status or protected veteran status