Sr. Security Architect ManagerPosition SummaryAs Sr. Security Architect Manager, you will own Neptune's security architecture function across Enterprise, Cloud, and Product Security. You will define architecture strategy, standards, and reference architectures; lead a team of security architecture resources; and serve as the principal architecture partner to IT, Engineering, Cloud, and Product Development. You will drive security-by-design principles, ensure compliance alignment, and provide senior technical guidance during incidents and governance reviews.
Responsibilities:Architecture Strategy & Leadership- Own security architecture strategy across Enterprise, Cloud, and Product Security, aligned to business objectives and risk posture
- Define and maintain architecture standards, reference architectures, and reusable control patterns
- Lead architecture reviews for new initiatives, system changes, and product programs
- Manage and provide technical direction to a team of security architecture resources
- Govern architecture documentation, decision records, and compliance evidence artifacts
Cloud Security Architecture & Engineering- Own cloud security architecture, landing zones, guardrails, and controls across AWS and Azure
- Oversee cloud security engineering, posture assessments, IaC security, and CI/CD pipeline hardening
- Enforce security-by-design and least-privilege across cloud networking, identity, and workloads
- Design and oversee security controls for AI/ML services (e.g., AWS Bedrock, Azure OpenAI, SageMaker)
- Govern enterprise AI tool consumption to prevent sensitive data from reaching third-party LLM APIs or AI-enabled SaaS platforms
Security Posture, Detection & Monitoring- Assess and improve cloud security posture using telemetry, CSPM, and logging platforms
- Identify misconfigurations, control gaps, and emerging risks across cloud environments
- Partner with Security Operations to improve visibility and response for cloud-related risks
- Critically assess AI-driven security tooling (CSPM, SIEM) to ensure detection quality
Product Security Architecture- Own architecture oversight across Neptune's AMI product security program - meter endpoints, RF/cellular, cloud pipelines, and SaaS
- Direct product security architecture resources in threat modeling, design reviews, firmware assessments, and compliance translation
- Ensure product security aligns with IEC 62443, NIST SP 800-82, NIST SP 800-218 (SSDF), and SOC 2
- Serve as security architecture liaison between Cybersecurity and product development teams
Incident Response & Readiness- Provide technical guidance during cloud and product security incidents - investigation, containment, and remediation
- Drive root cause analysis and architectural improvements following incidents
- Participate in tabletop exercises and threat modeling activities
Governance, Compliance & Collaboration- Ensure environments align with internal standards and frameworks (CIS, NIST, IEC 62443, SOC 2, Roper Cyber Controls)
- Support audit and compliance efforts with architecture artifacts and technical evidence
- Research emerging threats and technologies to proactively strengthen defenses
- Leverage AI-assisted tools to accelerate security engineering, threat modeling, and compliance automation
Relevant Platforms (experience with several expected):- Cloud: AWS, Azure
- Cloud Security & Posture: AWS Security Hub, AWS Config, Azure Policy, CSPM tools
- Identity & Access: Microsoft AD / Entra ID, IAM, PAM
- Detection & Monitoring: SIEM platforms, cloud logging and telemetry
- Product / IoT: Embedded firmware toolchains, SAST/DAST/SCA, IEC 62443 frameworks
- DevSecOps & Automation: IaC, CI/CD pipelines, scripting (PowerShell, Python, Bash)
Minimum Qualifications:- Bachelor's degree (or equivalent experience)
- 8+ years in information security; 4+ years in cloud security architecture, product/IoT security, or enterprise security architecture
- 2+ years leading or directing security architecture resources or teams
- Hands-on experience securing AWS and/or Azure environments
- Familiarity with NIST, CIS Benchmarks, zero trust principles, and cloud shared responsibility models
- Strong analytical, problem-solving, and communication skills
Preferred Qualifications:- Certifications: CISSP, CCSP, AWS Security Specialty, Azure Security Engineer, CSSLP, or GICSP
- Experience translating SOC 2 or regulatory requirements into technical cloud and product controls
- Product or IoT security experience (embedded firmware, RF/cellular, SaaS application security)
- DevSecOps, automation, and continuous compliance monitoring experience
- Familiarity with AI threat vectors (prompt injection, model inversion, training data poisoning) and AI governance frameworks (NIST AI RMF, OWASP Top 10 for LLMs)
- Demonstrated use of AI-assisted tools to improve security workflows
Travel Requirements: Typically requires overnight travel less than 10% of the time.
Location: Duluth, GA, Tallassee, AL
#HP1