Cybersecurity Architect

Purpose

We are looking for a Cybersecurity Architect to help build and evolve the infrastructure, tooling, and processes that protect our enterprise. This role is hands-on and you will serve as subject matter expert (SME) and trusted advisor aligning security solutions to strategic objectives, strict DoD compliance requirements, and risk posture across information technology (IT) and operational technology (OT) domains. 

The Role

• Develop and enforce comprehensive security policies, rule sets, and zone segmentation aligned with Zero Trust principles. 
• Act as the top-tier subject matter expert for all security engineering, configuration, and troubleshooting. 
• Ensure alignment with federal Cybersecurity Maturity Model (CMMC2) / NIST 800-171 framework, as it relates across all security architectures, policies, and procedures. 
• As directed by leadership, implement STIGs and other security baselines to corporate systems, architecture, and applications. 
• In association with the Network Engineer, design, implement, and maintain firewalls 
• In association with the Network Engineer, develop and enforce security policies for corporate IT, OT, and guest wireless networks, ensuring proper segmentation, secure authentication protocols, and encryption methods are in place.  
• Architect and optimize secure remote access solutions, utilizing Cisco ISE or similar enterprise VPN technologies, ensuring least privilege and multi-factor authentication (MFA) are implemented properly. 
• Lead the design, tuning, and integration of device logs into an enterprise SIEM. 
• Develop advanced correlation rules, alerts, dashboards, and reporting mechanisms to identify, prioritize, and track security threats and anomalies. 
• Conduct post-incident reviews to identify architectural gaps and define security enhancements. 
• Create and maintain and collaborate on enterprise-wide security standards, control baselines, and reference architectures. 
• In association with the ISSM, develop, maintain, and test an Incident Response Plan and playbooks. 
• In association with the ISSM, conduct regular security assessments and define remediation strategies to address control deficiencies. 

Basic Qualifications

• Ability to lawfully access information and technology that is subject to US export controls 
• BS in Cybersecurity or related technical field with 5+ years of relevant industry experience (9+ years’ experience in lieu of degree). 
• Expertise in network security design, deployment, and maintenance. 
• Deep understanding of IT/OT Networks architecture and technologies, including ZTNA, ABAC, Microsegmentation, and IEC 62443 Zones. 
• Professional experience in a Security Operations Center (SOC) or similar environment offering cybersecurity services. 
• Strong problem-solving skills with the ability to troubleshoot security issues and provide user support. 
• Excellent communication and interpersonal skills. 
• Flexibility and willingness to work overtime, including weekends and overnight as needed. 
• At least one DoD baseline security certification, such as CISSP, Sec+, A+Sec, OR the ability to rapidly receive such certification. 

Preferred Qualifications

• Certifications Certified Information Systems Security Professional (CISSP) or OSCP. 
• Project management experience with the capacity to manage multiple projects and meet deadlines under pressure. 
• Professional technical leadership in a security operations center (SOC) or similar cybersecurity service.

Work Environment

• Hybrid or onsite

Compensation

At Divergent, our pay range is based on the level of the job. For this role, we will consider candidates at levels S05- S06 as evaluated through our interview process. 

• Sr. Specialist/ S05: $110,160- $180,977
• Lead/ S06: $127,260 - $209,070