Security Architect

POSITION LOCATION

This position is eligible for a hybrid work arrangement. Currently 5 days of on‑site work per month are required.

The role of the Security Architect at MDT is to ensure that security requirements necessary to protect MDT’s mission, vision and business processes are adequately addressed. The Security Architect is responsible for designing and implementing comprehensive security solutions and strategies. This role serves as a key security and technical advisor and strategist, partnering with technology, development, and business teams to ensure secure‑by‑design solutions across the organization’s technology landscape.

• Design and implement security controls for cloud, on‑premises, and hybrid environments (e.g., AWS, Azure, GCP).
• Monitor and review cloud service provider security policies to help ensure compliance with organizational requirements.
• Partner with Enterprise Architects and Development teams to ensure security best practices and principles are embedded in their workflows.
• Conduct security assessments and risk analysis to identify vulnerabilities and propose mitigation strategies within the Zero Trust framework.
• Design and implement Zero Trust principles and frameworks to enhance the security posture of our systems and networks.
• Design and maintain robust CI/CD pipelines with integrated security checks to “shift security left,” ensuring vulnerabilities are identified early in the development process.
• Collaborate with cross‑functional teams to define access policies, user authentication mechanisms, and secure connectivity across various environments.
• Design and collaborate with cross‑functional teams to deploy secure SSO solutions with identity providers (IdPs), directory services, and third‑party applications for seamless and centralized authentication and authorization across multiple applications and systems.
• Collaborate with stakeholders to understand business requirements and translate them into effective security controls and solutions.
• Make recommendations to reduce risks.
• Support administration of the enterprise security infrastructure including, but not limited to, the systems supporting: network security monitoring, two‑factor authentication, web application firewalls, vulnerability management, endpoint detection and response, data loss prevention, and enterprise logging.
• Support incident response processes.
• Compile metrics for leadership.
• Assist in installing, implementing, and maintaining security software.
• Maintain the availability, patching, and operational functionality of assigned security systems.
• Evaluate new security tools, products, and solutions for applicability to security needs.
• Make recommendations regarding purchase of security products.
• Ensure MDT’s reputation is maintained internally and externally.
• Ensure appropriate levels of security and confidentiality are always maintained.
• Act as a representative of MDT with business and professional organizations and external IT contacts.
• Keep management informed of area activities and any significant concerns.
• Attend and participate in meetings as required.
• Complete accurate tickets, reports, records, and other documentation as necessary.
• Stay up to date with industry trends, emerging technologies, and security best practices to proactively identify potential threats and vulnerabilities.
• Be responsible for working with the security team and other departments to ensure work is flowing effectively and timely throughout the organization.
• Assist in setting department and company standard practices and procedures.
• Be responsible for working with company vendors to ensure the delivery of products or services is successful.
• Act as a subject matter expert for co‑workers and foster a culture of continuous learning and cross‑training.
• Be assigned to the on‑call rotation to support security operations.
• Stay informed of trends and changes in the information security field.
• Complete special projects and research studies as required.
• Keep work area clean, secure, and well maintained.

• Bachelor’s degree in Computer Science or a related field, or an equivalent…