IT Security & Risk Analyst V

Job Description

The IT/OT Principal Security Architect is a senior individual contributor responsible for designing, assessing, and evolving security architectures that protect the organization’s enterprise Information Technology (IT) and Operational Technology (OT/ICS) environments. This role partners closely with infrastructure, application, engineering, and business teams to ensure security is embedded into technology initiatives from strategy through delivery. The position emphasizes deep technical expertise, pragmatic risk-based decision‑making, and the ability to translate security requirements into practical, business-aligned solutions.

Security architecture & solution design

• Design and maintain security reference architecture for secure solutions across IT and OT networks, systems, applications, and cloud platforms.
• Develop target‑state architectures and integration approaches that protect existing environments while enabling future capabilities.

Risk‑based Requirements & Secure Design

• Define security requirements using risk assessments, threat modeling, security testing, and analysis of existing systems and new initiatives.
• Perform architectural security reviews, identify design gaps, and collaborate with delivery teams to define and implement mitigation strategies.

Governance, policy, and standards

• Contribute to security architecture governance by supporting architecture review processes, standards, patterns, and documented risk or exception decisions.
• Support policy development and implementation activities related to system hardening, monitoring, incident response readiness, and disaster recovery alignment.

Cross‑functional collaboration & influence

• Work closely with IT, OT, and business stakeholders to promote secure‑by‑design practices and security‑compatible solution designs.
• Clearly communicate architectural risks, tradeoffs, and recommendations to both technical and non‑technical audiences.

IT/OT security scope

• Design and assess IT/OT security architectures, frameworks, and controls; evaluate OT security posture and document risks in business‑relevant terms.
• Collaborate with engineering and automation teams to align OT security requirements with operational constraints while improving resilience.

Required Qualifications

• 15+ years of experience as a senior security architect, security engineer, or equivalent role within enterprise IT and/or OT environments.
• 15+ years of a strong, pragmatic approach to problem solving within IT and OT Cybersecurity with the ability to balance risk reduction and business delivery.
• 15+ years with the proven ability to define security requirements through risk assessments and threat modeling and translate them into actionable architectures and controls.
• Certification required: CISSP or CISM.
• Working knowledge of established cybersecurity frameworks and standards to support effective policy development and governance.

Preferred Qualifications

• Experience working within regulated or compliance‑driven environments and applying security frameworks such as NIST CSF or ISO 27001.
• Awareness and practical understanding of OT‑ and data‑protection‑focused frameworks, including NIST 800‑82, NIST 800‑171, and IEC 62443.
• Experience designing secure architectures for hybrid and cloud environments, including identity and zero‑trust patterns as applicable to the organization’s roadmap.
• Exposure to IT/OT/ICS/industrial security concepts such as network segmentation, secure remote access, vendor access, and operational risk constraints.

• Security architecture, secure design patterns, and systems integration.
• Risk management, threat modeling, and vulnerability assessment.
• Governance, policy and standards contribution, and stakeholder influence.
• Clear written and verbal communication with the ability to express security issues in business terms.

We offer a comprehensive and competitive benefits package. Employee benefits vary by role, however, may include Health and Wellness, Mental Health, Retirement Savings, Life and Disability, Paid Maternity and Parental Leave, Paid Time Off, Tuition Reimbursement, and an Employee Assistance Program.

All qualified candidates will receive consideration for all positions without regard to race, color, age, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, veteran status, disability, genetic information, or other non‑merit factor.