What are the responsibilities and job description for the Cybersecurity Architect position at U.S. Engineering?
U.S. Engineering has been an industry leader since 1893. How? Constant innovation and a willingness to evolve. The construction industry changes rapidly, and we cultivate a dynamic workplace where even our newest team members can influence change and make an impact. We know that our most valuable asset is our people. Join us!CYBERSECURITY ARCHITECTThe Cybersecurity Architect is responsible for design, implementation, and oversight of enterprise-wide security frameworks, ensuring the protection of digital assets, networks, applications, and cloud environments. This is a strategic role that assess risks, develops mitigation plans, and integrates security best practices while aligning cybersecurity strategies with business objectives.Principal Duties and Accountabilities:
- Designing and implementing secure network architectures, including firewalls, IDS/IPS, VPNs, VLANs, and cloud security.
- Developing and maintaining security frameworks that align with industry standards (NIST, ISO 27001, CIS Controls).
- Integrating security measures into software development and IT infrastructure.
- Continuously assessing security risks and identifying vulnerabilities.
- Monitoring for potential security threats and responding to incidents as needed.
- Conducting security assessments, penetration testing, and vulnerability management.
- Implementing and managing authentication, authorization, and identity federation mechanisms.
- Overseeing identity and access controls to prevent unauthorized access.
- Developing and testing incident response and disaster recovery plans.
- Investigating security breaches and recommending corrective actions.
- Working with IT, Holdings, and Operations teams to integrate security into business operations.
- Advising leadership on cybersecurity risks, compliance, and regulatory requirements.
- Educating non-technical stakeholders on security best practices.
- Prioritizing and managing cybersecurity projects to ensure timely implementation.
- Developing policies, procedures, and guidelines for security best practices.
- Balancing security with usability and business continuity needs.
- Managing security tools such as Microsoft Defender, Intune, and O365 security features.
- Ensuring compliance with industry regulations and security frameworks.
- Evaluating and recommending security technologies and budget planning for security initiatives.
- Bachelor’s or associate degree in computer science, IT, or a related field.
- 8 years’ experience in IT risk management and information security
- IT security or risk assessment certifications (CISSP, CISM, CEH, CCSP) preferred
- Demonstrated experience leading cybersecurity teams, managing security initiatives, or overseeing cross-functional security projects in a leadership or management capacity.
- Understanding of firewalls, IDS/IPS, VPNs, VLANs, and secure network architecture.
- Knowledge of securing cloud environments (Azure, Google Cloud) and implementing cloud security best practices.
- Experience securing operating systems, mobile devices, and applications.
- Implementing authentication, authorization, and identity federation mechanisms.
- Knowledge of encryption protocols, hashing algorithms, and PKI.
- Ability to assess risks and design security controls to mitigate them.
- Familiarity with NIST, ISO 27001, CIS Controls, and other regulatory requirements.
- Ability to design, develop and execute incident response and disaster recovery plans and analyze security breaches.
- Proficient with Microsoft applications: Defender, Intune, O365
- Understanding how to integrate security into software development.
- Quickly identify and mitigate security risks.
- Aligning cybersecurity strategies with business objectives.
- Excellent communication skills, the ability to explain complex security concepts to non-technical stakeholders.
- Working with other IT teams, Holdings, and Operations teams.
- Prioritizing and managing security initiatives/projects and ensuring timely implementation.
- Understanding how cybersecurity affects business operations.
- Balancing security with usability and business continuity.
- Budgeting and cost analysis for security initiatives.
- Frequent use of computer, including keyboarding, viewing monitor, etc.
- Travel as required to conferences and continuing education.
- Occasional day trips between construction job sites, offices and manufacturing facilities.
- The range for this position has been established at $115,000.00 to $163,000.00 per year and is U.S. Engineering’s good faith and reasonable estimate at the time of the posting. The compensation offered to the finalist selected for this role will be set based on a variety of factors, including but not limited to, internal equity, experience, education, specialty, and training.
- Your total compensation will go beyond the number on your paycheck. Team members are eligible for a year-end bonus based on company and/or individual performance as well as paid time off. An industry-leading benefits package including health, dental, and vision plans, matching retirement contributions, and matching 529 contributions all add to your bottom line.
Powered by JazzHR
FXYBpA18z1
Salary : $115,000 - $163,000
