Cybersecurity Architect
Job DescriptionJob DescriptionDuties & Responsibilities
Security Architecture, Optimization and Response Operations
- Design, implement, and continuously optimize security solutions mapped to NIST and CIS frameworks, ensuring infrastructure supports MDR operations and compliance requirements across MERS.
- Integrate MDR platform feeds, alerts, and automation into core IT workflows, enabling rapid threat detection and automated response for operational security.
- Serve as the technical SME for the Cyber Incident Response Team (CIRT), Authorize and initiate technical incident response actions, including containment and remediation strategies during cyber events. Provide input and expertise on cyber investigations and incidents as needed.
- Make technical decisions regarding the selection, implementation, and modification of security technologies and protocols to address organizational needs and evolving threats.
- Ensure system availability and reliability through proactive monitoring and maintenance.
- Provide technical leadership, mentorship and skill development to the Cybersecurity team members.
Threat & Vulnerability Management
- Coordinate and monitor annual penetration testing, leading vulnerability management initiatives and prioritizing remediation efforts.
- Conduct proactive threat hunting to identify hidden risks and address potential security gaps.
- Facilitate threat modeling efforts for critical MERS applications and provide critical security recommendations and architectural improvements to ensure the safety of the MERS network and critical data.
- Support the MERS vendor risk management program by overseeing third-party vulnerabilities and collaborating on risk mitigation strategies.
- Establish priorities for vulnerability remediation and direct the allocation of resources to address high-risk issues.
- Approve risk mitigation strategies and ensure alignment with organizational risk tolerance and regulatory requirements.
Documentation, Compliance & Policy Development
- Document technical controls and contribute to the development of cybersecurity policies, standards, and standard operating procedures (SOPs) to ensure consistent, auditable security practices.
- Support audit readiness activities by maintaining accurate records of security controls and assisting with policy development across MERS programs and projects.
- Develop and maintain disaster recovery plans and participate in their implementation, planning, and testing.
- Lead the development of cybersecurity technical policies, standards, and procedures, ensuring compliance with legal and regulatory requirements.
Collaboration & Strategic Guidance
- Advise on security best practices for new and ongoing MERS initiatives, serving as the cybersecurity subject matter expert for program and project development.
- Oversee and coordinate with vendors on security-related projects, ensuring alignment with organizational security objectives.
- Attend MERS IT/Security Team meetings for cybersecurity & IT team coordination of efforts and information sharing.
- Provide technical leadership, mentorship and skill development to the Cybersecurity team members.
Minimum Required Qualifications
Education:
- Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or relevant field, or the equivalent combination of education and experience, required.
Experience:
- Five or more years of experience in IT security, including experience with endpoint protection, SIEM, SOAR, DLP, EDR and other security tools.
- Five or more years of experience with security monitoring, diagnostics, vulnerability management and analytics tools.
- Demonstrated experience in Cybersecurity policy and standards definition.
Training Requirements
- One or more of the following:
- Microsoft Certified
- Azure Security Engineer
- Cybersecurity Architect Expert
- Certified Information Systems Security Professional – CISSP
- Certified Ethical Hacker (CEH)
Licensure, Certification, or Registration:
- Professional certification in security specialization (Certified Information Systems Security Professional – CISSP or equivalent) , or willingness/ability to obtain within the first year of employment.
Qualifications
- Experience operating in a Security Operation Center (SOC)
- Experience supporting public cloud security services (especially Azure and Purview)
- Experience with endpoint vulnerability management
- Networking expertise
- CISSP
Expertise
Knowledge of:
- Institute of Standards and Technology
Skill in:
- Problem Solving
- Verbal and written communication
- Planning, organization, and time management
Ability to:
- Diagnose
- Communicate follow-up to end users
- Anticipate potential technological issues or needs
Briefly describe the types of decisions made by this position:
- Technical decisions while troubleshooting issues
- Technical decisions regarding requests for new services
- Technical and tactical decisions regarding implementing technology or changes in vendor services
- Some strategic decisions regarding new and emerging technology in collaboration with Cybersecurity and Facilities Services Director
Physical Requirements
The physical demands described here are representative of those that must be met by an employee to perform successfully the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
- While performing the duties of this job, the employee is occasionally required to stand; walk; sit; use hands to handle, or feel objects, tools or controls; reach with hands and arms; climb stairs; balance; stoop; kneel, crouch or crawl; talk or hear.
- The employee must occasionally lift and/or move up to 25 pounds.
- Specific vision abilities required by the job include close vision, distance vision, vision, peripheral vision, depth perception and the ability to focus.
Working Conditions
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
- Location: All work of this position will be performed on site at MERS main office or remote work location.
- Weather: While performing the duties of this job, the employee is not exposed to weather conditions.
- Noise: The noise level in the work environment is usually moderate.