We are looking for a proficient
Cybersecurity Architect to spearhead the strategic planning and management of our global security framework. The ideal candidate will align DCI's broader business objectives-including CIS compliance, network consolidation, and AWS CI/CD security guidelines with the technical strategies necessary to safeguard our data.
Location: Tampa, FL; Channelview, TX; Remote
Pay Range: $130,000 - $150,000 annual salary
We are not able to offer visa sponsorship at this time.DCI Benefits:- Medical, dental and vision insurance
- 401(k) with generous employer match
- Paid time off, including 10 paid holidays
- Optional health savings account & flexible spending account
- Life insurance
- Employee assistance program
- Parental leave
- Referral program
- Tuition reimbursement
Primary Roles and ResponsibilitiesWhat You'll Own:- Architectural Evaluation: Analyze the existing cybersecurity landscape, covering Cloud Security, network controls, Governance, Risk, and Compliance (GRC), and vulnerability management. This also includes evaluating Endpoint Detection and Response (EDR), Security Operations Center (SOC), Security Information and Event Management (SIEM), Identity and Access Management (IAM), and Privileged Access Management (PAM).
- Security Assessment: Assess the current-state cybersecurity architecture across Identity and Access Management (IAM), Privileged Access Management (PAM), Endpoint Detection and Response (EDR), Security Operations Center (SOC), Security Information and Event Management (SIEM), vulnerability management, Governance, Risk, and Compliance (GRC), Cloud Security, and network controls.
- Architecture Strategy: Define and maintain a target-state and transition architecture, aligned to DCI's chosen operating model, governing regulations, and compliance requirements.
- Advisory & Authority: Provide advisory and act as the single architectural authority to ensure controls are implemented consistently and without overlapping or gaps.
- Risk Identification: Identify architectural risks related to Managed Service Provider (MSP) tool ownership, control-plane dependencies, and SOC continuity.
- Design Review: Review configurations conceptually for security design correctness (focusing on architecture rather than day-to-day administrative changes) and data flow.
- Gap Prioritization: Identify and prioritize high-risk gaps including privileged access, segmentation, endpoint exposure, audit gaps, protocol mismatch, and tier architecture or hybrid layouts.
- Remediation Planning: Recommend pragmatic remediation measures aligned to DCI's specific risk tolerance and budget.
- Program Management: Lead and oversee the implementation of the strategy with the internal DCI and external partners.
- Zero Trust Implementation: Ensure Zero Trust and "secure by design" principles are applied safely and incrementally to avoid business disruption.
- Standards Maintenance: Define and maintain security architecture principles, standards, and reference patterns.
- Leadership Support: Support leadership decision-making with detailed architecture options, risk trade-offs, cost vs. benefit views, and environmental or cultural fit assessments.
- Cross-Functional Collaboration: Partner with Legal/HR to ensure adherence to GDPR, CCPA, or HIPAA.
- Vendor & Compliance Management: Handle vendor coordination, license monitoring, and compliance management with associated third parties.
Qualifications:- Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Experience: 10+ years of experience in cybersecurity, with at least 3 years specifically in a security architecture or senior engineering role.
- Technical Expertise: Proven experience with cloud security (AWS preferred), IAM/PAM solutions, and SOC/SIEM operations. Willingness and expertise to roll-up the sleeves and work side-by-side with the internal DCI and external partner teams on incidents, forensics and improving DCI's cybersecurity posture.
- Certifications: Professional certifications such as CISSP (Certified Information Systems Security Professional), CCSP (Certified Cloud Security Professional), or CISM (Certified Information Security Manager) are highly preferred.
- Skills: Strong understanding of Zero Trust principles, risk management, and regulatory compliance frameworks.
- Communication: Exceptional ability to communicate complex technical risks and trade-offs to senior leadership.
