Network Security Architect

SUMMARY

The Cybersecurity Architects' are a group of professionals who ensure that systems, services, and infrastructure work reliably and securely. The Cybersecurity Architect is expected to have a beginning to moderate understanding of complex IT systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice security products.

Knowledge of developing, maintaining, and implementing endpoint and network security policies, procedures, and solutions is essential to this role.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Implement and maintain endpoint configuration management tools to ensure that devices adhere to security baselines.
• Evaluate and recommend new technologies to enhance endpoint security capabilities.
• Implement and manage endpoint protection solutions to safeguard against malware, ransomware, and other security threats.
• Conduct regular vulnerability assessments on endpoints and assist with patches and updates as needed.
• Develop and enforce endpoint security policies and procedures to ensure compliance with industry standards and regulatory requirements.
• Collaborate with other teams to integrate endpoint security measures into overall security policies.
• Monitor and analyze endpoint security alerts and events, and respond to security incidents in a timely manner.
• Conduct forensic analysis on compromised endpoints to determine the root cause of security incidents.
• Design, implement, and maintain network security architectures, including firewalls, VPNs, intrusion detection / prevention systems, and other security devices.
• Collaborate with the network infrastructure team to integrate security measures into overall network design.
• Monitor and analyze network traffic for security incidents and respond promptly to mitigate threats.
• Investigate and conduct post-incident analysis to determine the root cause of security breaches.
• Develop and enforce network security policies and procedures to ensure compliance with industry standards and regulatory requirements.
• Provide guidance on security best practices to other IT and network teams.
• Conduct periodic security audits on network devices and configurations.
• Ensure compliance with industry regulations and standards related to network security.
• Stay up to date on the latest security and industry trends including their compliance requirements.
• Maintain knowledge of cybersecurity frameworks such as NIST, ISO 27001, and CIS.
• Responsible for overseeing the security controls for the company with oversight.
• Responsible for designing and implementing new security technologies with oversight.
• With oversight, provide training to junior members of the team.
• With oversight, maintain complex project tasks and interface with various teams.
• Provide thoughts on new features to be added to the SIEM.
• Provide thoughts on the design of security policies for the organization.
• With guidance, assist in maintaining PCI compliance of the organization.
• With guidance, assist in the design and implementation of a vulnerability management program.
• With minimal assistance aid in the design, implementation, and enhancement of the security awareness program.
• Effectively deal with rapid change in a positive manner.
• Assist in process improvements to enhance the efficiency of current operational procedures.
• Coordinate relations with and serve as a liaison between business and IT staff.
• Continually assess work processes and recommend changes which drive operational excellence.
• Assist in developing short-term and long-term department goals which support long-term strategic goals.
• Ensure the coordination and communication of production changes.
• Participate in all company / location driven communication efforts, including huddles, department meetings, and other related efforts.
• Maintain a positive and professional working relationship with peers, management, and support resources, with a constant commitment to teamwork and exemplary customer service.
• Maintain technical knowledge by attending educational workshops and reviewing publications.
• Conduct self in the presence of co-owners and community to present a professional image of D&H Distributing.
• Perform all other duties as assigned by management in a professional and efficient manner.

KNOWLEDGE, SKILLS, and / or ABILITIES

EDUCATION and / or EXPERIENCE

o Associates Degree in Cybersecurity or similar area of study required or equivalent years of related work experience.

o Bachelor's Degree in Cybersecurity or similar area of study preferred.

o At least 3-5 years of experience in cybersecurity with implementation and system maintenance preferred.

o Scripting experience in PowerShell, Python or Perl preferred.