Principal Architect, Cybersecurity
Contract Type: Direct Hire
Posted Date: October 1, 2024
The ideal candidate will be a self-starter, who is eager to collaborate with others to support the client’s mission, We empower a better future. The vision is to lead the responsible energy transition and provide affordable, reliable, and sustainable service to our customers and communities. Working and serving within our service territory, you will experience the pride of knowing that you are developing a solution that assists your neighbor across the street or across the state.
To achieve the mission, vision and values, the Digital Solutions teams provide an opportunity to work to solve complex business and technical situations. You will partner with your peers to produce digital solutions in a dynamic working environment. By being engaged in work that matters, you will have an opportunity to develop skills across multiple platforms and use your technical expertise to develop solutions and see your work's direct impact.
If you are passionate about digital technology and are excited about the opportunity to join a team of dynamic professionals, please submit your application.
Summary of Primary Duties and Responsibilities:
The incumbent in the Cyber Security Architect role will provide technical advice on design and implementation of security controls across corporate and business systems in both Operational Technology (OT)/Industrial Control Systems (ICS) and IT environments.
Major responsibilities include, but are not limited to:
• Develop a complete understanding of client’s technology and information systems
• Design, build, implement and support enterprise-class security systems
• Serve as a technical liaison and align the IT and Operations Technology (OT) organizational units to ensure production facilities, operations and systems are following security best practices
• Identify and communicate current and emerging security threats
• Design security architecture elements to mitigate threats as they emerge
• Plan, research, and design robust security architectures for IT projects
• Perform or supervise vulnerability testing, risk analyses and security assessments
• Create solutions that balance business requirements with information and cybersecurity requirements
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
• Test security systems to ensure they behave as expected
• Provide guidance to security and IT teams
• Create and update security policies, procedures and/or standards as needed
• Respond to security-related incidents and provide thorough remedial solutions and analysis
• Regularly communicate vital information, security needs and priorities to leadership
• Work within the changing compliance requirements of NERC-CIP and others that may arise
• Keep up to date with the latest cybersecurity trends, threats and technologies and provide guidance to the organization accordingly.
• Creating detailed diagrams, requirements, implementation plans, processes, and procedures to document network architecture, and implementation of solutions and their operations.
Education and Experience:
Bachelor’s degree in Computer Science is highly preferred. The ideal candidate will have at least ten years of progressive technology and cybersecurity experience with at least 5 years of demonstrated experience with cybersecurity systems and 5 years of demonstrated experience with OT/ICS systems.
Required experience for successful selection includes:
· Demonstrated work experience with design and implementation of security standards/regulations and/or contractual information security requirements
· Demonstrated work experience in OT/ICS systems design, implementation and/or administration, preferably with critical infrastructure sectors such as energy, utilities, or transportation
· Demonstrated work experience with OT/ICS network communication protocols (DCS, PLCs, Modbus, OPC, SCADA)
· Demonstrated work experience with creating security objectives, operational objectives, and tradeoffs associated with the network design process
· Demonstrated work experience in security risk management, network security, identity and access management authorization and authentication methods, data protection and security monitoring and alerting technologies
· Experience creating and presenting cybersecurity information to IT, OT and Business Stakeholders
· Demonstrated work experience with network protocols such as TCP/IP, UDP, DHCP, DNS, and HTTP
· Demonstrated interpersonal skills, including conflict resolution
· Knowledge of cryptology and encryption algorithms (e.g., IPSEC, AES, GRE, IKE, MD5, SHA, 3DES)
Skills, Knowledge, and Abilities:
Desired skills for cyber security architect include:
· Operational security implementation and management
· Network Architecture and Network Topology
· Knowledge of cybersecurity frameworks such as NIST, ISO & CIS
· Network security standards and their implementation in compliance to corporate security policies
· Industry standards and methodologies
· NERC-CIP Requirements
· In depth knowledge of implementing and maintaining cybersecurity tools and troubleshooting system issues
· Ethical hacking, penetration testing, red/blue/purple team exercises
· MITRE ATT&CK Framework
· Cloud computing technologies and workload transition challenges
· FISMA and FedRAMP Controls
· DevOps Methodology
Licenses, Certifications, and/or Testing:
Certified SCADA Security Architect (CSSA) preferred but not required
GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection) preferred but not required
ISA/IEC 62443 Cybersecurity Certificates preferred but not required
Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT, etc.) preferred but not required
Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.) preferred but not required
Successful candidates must possess and maintain a valid driver’s license.
Working Conditions:
Working conditions will vary from office to field environment. Occasional travel required. Must be able to work additional hours, both indoors and outdoors, on short notice in all types of weather.