Skip to main content

Principal Architect, Cybersecurity

Contract Type: Direct Hire

Posted Date: October 1, 2024

The ideal candidate will be a self-starter, who is eager to collaborate with others to support the client’s mission, We empower a better future. The vision is to lead the responsible energy transition and provide affordable, reliable, and sustainable service to our customers and communities. Working and serving within our service territory, you will experience the pride of knowing that you are developing a solution that assists your neighbor across the street or across the state.

To achieve the mission, vision and values, the Digital Solutions teams provide an opportunity to work to solve complex business and technical situations. You will partner with your peers to produce digital solutions in a dynamic working environment. By being engaged in work that matters, you will have an opportunity to develop skills across multiple platforms and use your technical expertise to develop solutions and see your work's direct impact.

If you are passionate about digital technology and are excited about the opportunity to join a team of dynamic professionals, please submit your application.

 

Summary of Primary Duties and Responsibilities:

The incumbent in the Cyber Security Architect role will provide technical advice on design and implementation of security controls across corporate and business systems in both Operational Technology (OT)/Industrial Control Systems (ICS) and IT environments.

  

Major responsibilities include, but are not limited to:

     Develop a complete understanding of client’s technology and information systems

     Design, build, implement and support enterprise-class security systems

     Serve as a technical liaison and align the IT and Operations Technology (OT) organizational units to ensure production facilities, operations and systems are following security best practices

     Identify and communicate current and emerging security threats

     Design security architecture elements to mitigate threats as they emerge

     Plan, research, and design robust security architectures for IT projects

     Perform or supervise vulnerability testing, risk analyses and security assessments

     Create solutions that balance business requirements with information and cybersecurity requirements

     Identify security design gaps in existing and proposed architectures and recommend changes or enhancements

     Test security systems to ensure they behave as expected

     Provide guidance to security and IT teams

     Create and update security policies, procedures and/or standards as needed

     Respond to security-related incidents and provide thorough remedial solutions and analysis

     Regularly communicate vital information, security needs and priorities to leadership

     Work within the changing compliance requirements of NERC-CIP and others that may arise

     Keep up to date with the latest cybersecurity trends, threats and technologies and provide guidance to the organization accordingly.

     Creating detailed diagrams, requirements, implementation plans, processes, and procedures to document network architecture, and implementation of solutions and their operations.

 

Education and Experience:

Bachelor’s degree in Computer Science is highly preferred. The ideal candidate will have at least ten years of progressive technology and cybersecurity experience with at least 5 years of demonstrated experience with cybersecurity systems and 5 years of demonstrated experience with OT/ICS systems.

 

Required experience for successful selection includes:

·        Demonstrated work experience with design and implementation of security standards/regulations and/or contractual information security requirements

·        Demonstrated work experience in OT/ICS systems design, implementation and/or administration, preferably with critical infrastructure sectors such as energy, utilities, or transportation

·        Demonstrated work experience with OT/ICS network communication protocols (DCS, PLCs, Modbus, OPC, SCADA)

·        Demonstrated work experience with creating security objectives, operational objectives, and tradeoffs associated with the network design process

·        Demonstrated work experience in security risk management, network security, identity and access management authorization and authentication methods, data protection and security monitoring and alerting technologies

·        Experience creating and presenting cybersecurity information to IT, OT and Business Stakeholders

·        Demonstrated work experience with network protocols such as TCP/IP, UDP, DHCP, DNS, and HTTP

·        Demonstrated interpersonal skills, including conflict resolution

·        Knowledge of cryptology and encryption algorithms (e.g., IPSEC, AES, GRE, IKE, MD5, SHA, 3DES)

 

Skills, Knowledge, and Abilities:

Desired skills for cyber security architect include:

·        Operational security implementation and management

·        Network Architecture and Network Topology

·        Knowledge of cybersecurity frameworks such as NIST, ISO & CIS

·        Network security standards and their implementation in compliance to corporate security policies

·        Industry standards and methodologies

·        NERC-CIP Requirements

·        In depth knowledge of implementing and maintaining cybersecurity tools and troubleshooting system issues

·        Ethical hacking, penetration testing, red/blue/purple team exercises

·        MITRE ATT&CK Framework

·        Cloud computing technologies and workload transition challenges

·        FISMA and FedRAMP Controls

·        DevOps Methodology

Licenses, Certifications, and/or Testing:

 

Certified SCADA Security Architect (CSSA) preferred but not required

GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection) preferred but not required

ISA/IEC 62443 Cybersecurity Certificates preferred but not required

Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT, etc.) preferred but not required

Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.) preferred but not required

Successful candidates must possess and maintain a valid driver’s license.

 

Working Conditions:

Working conditions will vary from office to field environment. Occasional travel required. Must be able to work additional hours, both indoors and outdoors, on short notice in all types of weather.