Cyber Security Architect

Job Description - Cyber Security Architect (332602)

Cyber Security Architect – Information Technology

The Cyber Security Architect must be a highly motivated, self-driven team player that can excel in a fast-changing business environment. The Cyber Security Architect is responsible for leading 3 core areas of Cyber security - Security Architecture, Security Operations, and Governance and Compliance. This includes but is not limited to leading critical initiatives to maintain a secure network, incident response, conducting critical security and risk assessments, recommending and implementing actions or mitigations as needed.

• Collaborate with industry experts from the Textron Enterprise, and Business Unit Cyber Security/Governance and Compliance, on projects and initiatives to address cyber security issues and constantly improve our security posture across the enterprise.
• Provide expertise, guidance and recommendations to all Bell personnel on various Cyber Security related issues, challenges, or concerns and lead vulnerability management coordination across the IT landscape to keep a minimum risk environment.
• Develop and implement secure enterprise network firewall controls for enhanced segmentation and visibility as well as implement operationally effective OT security controls including robust network segmentation.
• Maintain in depth familiarity with the enterprise IT landscape to contribute security inputs at all phases of project work and system maintenance.
• Develop and disseminate security awareness and education information to end users and system administrators as well as perform IT security incident response and remediation activities, to include working with Textron enterprise and other business unit IT security teams, as necessary.
• Manage the identification, analysis, and governance of ever-evolving Cyber Security risks across the organization; including the assessment and recommendations and mitigation strategies. Develop tools, benchmarks, and metrics.
• Lead critical security assessments to facilitate staying secure while implementing new and changing technologies and stay abreast of emerging governance and compliance regulations, both internal and external.
• Develop and disseminate Cyber Security awareness and education information to users and IT team members via presentations, workshops, and various communication media.
• Provides guidance on vulnerability assessments to help the organization develop Security Standards and procedures that support Strategic, Tactical and Operational objectives.
• Develops and deploys technical controls (Data Loss Prevention, Information Rights Management) providing data categorization compliance and protection of intellectual property.

• Knowledge of common Information Security Management frameworks and concepts such as AS9100/ISO 27001/2, NIST, CMMC, SOX, PII, PCI, CSF, etc.
• Knowledge of General System Security such as Firewalls, Network Intrusion Protection, Web Content Filtering and Network Access Control.
• Knowledge of Risk Management concepts – Identification, Controls and Mitigations.
• Ability to interpret and communicate security policies, procedures and technical requirements.
• Requires the ability to obtain/retain technical knowledge in implementing data protection and integrity controls, operating systems and network security controls, authentication controls and Security protocols.
• Strong communication skills, effective at communicating with various levels of the organization (e.g., technical/non-technical verbal & written communication abilities.
• Industry recognized security certifications is a plus (i.e., CISA, CISM, CISSP, Security+, Net+, CySA+, CASP+, CEH, etc.)
• Experience / Familiarity with Windows Operating systems (Desktop and Server), Active Directory, and Linux (any distribution) is preferred.

• Bachelor’s Degree in Cyber Security, Cyber Security Governance, Computer Science, Information Systems,or related field of study.
• 10+ years experience in cyber security and/or other Information Technology related role.
• Ability to obtain Security Clearance.