Cybersecurity Architect

Position Summary:

The Cybersecurity Architect will be responsible for providing secure solutions and services which provide defense in depth for Camden’s enterprise computing systems. The Cybersecurity Architect will develop long‑term cyber security strategies and roadmaps, using security frameworks to strengthen the Bank’s overall information security posture. In addition, this role will be a key contributor in the development of the bank’s security architecture and partner with our business and technology partners.

• Align enterprise security architecture with applicable regulatory and industry frameworks including NIST CSF, SOX, and GLBA requirements
• Participate in security reviews of vendor technologies, SaaS solutions, and integrations
• Analyze and recommend security controls and procedures in the acquisition, development, and change management lifecycle of information systems
• Use industry standard security architecture frameworks to ensure security controls are well integrated and meet the quality attributes of confidentiality, integrity, and availability
• Provide technical security leadership to evolve the organization’s Zero Trust security architecture strategy across cloud, identity, endpoint, and network domains
• Support and develop security standards and governance controls for enterprise AI platforms, generative AI integrations, and machine learning‑enabled business solutions
• Partner directly with technology and business stakeholders on the identification, development and review of enterprise security standards
• Coach and mentor teams to incorporate security into enterprise and customer‑facing applications
• Contribute to and advance the organization’s security strategy and product roadmap
• Identify and communicate current and emerging threats to the organization
• Protect the company’s information assets using a variety of technological and security controls
• Respond to all system and network security breaches
• Assist in complex security control analysis and enterprise security design problem solving
• Conduct architecture risk assessments and threat modeling using frameworks such as STRIDE, MITRE ATT&CK, or attack path analysis

• Bachelor’s degree in Computer Science, Information Systems, or Cybersecurity
• 7 or more years of related work experience
• Experience with development, implementation, operation, and testing of Information Technology within regulated environments
• Experience with firewalls, SIEM/SOAR, e‑mail security, incident response, vulnerability management, and Data Loss Prevention
• Basic proficiency in scripting languages such as Python and Powershell

• CISSP, CCSP, or GDSA
• Risk management experience
• Experience with SASE/SSE and ZNTA architecture
• Understanding of securing AI tools, AI integrations, and AI oversight
• Background in securing and developing API integrations
• Prior experience working in a regulated environment
• Broad infrastructure and enterprise technology experience preferred

• Ability to manage multiple tasks and work in a fast‑paced environment
• Ability to communicate complex security concepts to technical and non‑technical stakeholders, including leadership and business partners
• Technical writing
• Project management
• Team player

• Robust medical, dental, and vision insurance packages
• Generous time off, including paid federal holidays and paid day off for your birthday
• 401(k) retirement savings plan
• Tuition reimbursement, professional development, and career growth opportunities
• Employee assistance program
• Comprehensive wellness program

Equal Opportunity Employer. Camden National Bank is an Equal Opportunity Employer and does not discriminate on the grounds of race, color, religion, sex, sexual orientation, including gender identity and gender expression, national origin, citizenship status, age, disability, genetic information or veteran status.

Employment with Camden National is on an at‑will basis, meaning employment is not guaranteed for any specific period of time, and any employment relationship established may be terminated by either party at any time, for any reason, with or without notice. Completion of an employment application is not a contract, express or implied, guaranteeing employment.