Security Architect
Listed on 2026-07-09
-
IT/Tech
Cybersecurity, Information Security
FBT Gibbons LLP
FBT Gibbons LLP is a national law firm focused on serving companies operating and investing in the middle market. With nearly 1,500 employees across 26 offices, we support clients ranging from large multinationals to mid‑sized businesses and growth‑oriented startups across the United States. Our teams collaborate across departments and geographies to deliver excellent service to our clients, colleagues, and the communities we serve.
Aboutthe Role
We are currently seeking a Security Architect to shape and advance the firm’s enterprise security architecture, lead the implementation of modern security frameworks and risk management initiatives, and partner across the organization to protect systems, data, and infrastructure while fostering a strong culture of security and compliance.
The ideal candidate is a collaborative and forward‑thinking cybersecurity professional with strong technical expertise, exceptional problem‑solving skills, and a passion for protecting systems, data, and emerging technologies.
This position can be based in Cincinnati, OH;
Columbus, OH;
Indianapolis, IN;
Lexington, KY; or Louisville, KY.
- Design, implement and maintain secure authentication and authorization architecture across firm systems and applications.
- Align cloud, network and technology infrastructure with zero trust security principles and industry best practices.
- Provide security guidance and best practices for cloud infrastructure, existing technology platforms, and new IT solutions.
- Manage the preparation, execution, and remediation of security assessments, risk reviews, and compliance activities.
- Develop, track and report on security metrics, key performance indicators (KPIs) and overall program effectiveness.
- Support the Security and Compliance Specialist with client‑required compliance reviews by preparing and validating approved security artifacts and documentation.
- Assist with vendor security assessments by evaluating compliance gaps, developing remediation plans, and supporting implementation of required security controls.
- Review and monitor firm systems to ensure compliance with established security baselines, policies and standards.
- Manage, optimise and evaluate existing security tools and technologies while recommending and implementing solutions to strengthen the firm’s security posture.
- Develop, maintain and monitor standardised security processes to ensure consistent application of controls across the firm.
- Ensure security requirements are incorporated into end‑user access management, equipment provisioning, and technology lifecycle processes.
- Execute security, privacy and risk‑related audit activities while ensuring appropriate documentation and follow‑up.
- Conduct security reviews of proposed software, vendors, applications and technology projects to identify risks and recommend mitigation strategies.
- Monitor and enhance data protection practices, including network storage security, encryption standards, removable media controls and remote access safeguards.
- Troubleshoot and resolve network security, access and system integrity issues.
- Monitor emerging cybersecurity threats and vulnerabilities using industry resources, including government and law enforcement advisories, and communicate relevant risks to stakeholders.
- Partner with cross‑functional teams to identify security improvements, operational efficiencies and opportunities to strengthen technology controls.
- Recommend and lead security enhancements based on industry best practices related to threat management, vulnerability prevention, compliance and monitoring.
- Conduct security incident investigations, document findings, coordinate remediation activities and implement preventative measures.
- Analyse security incidents to identify root causes and provide recommendations to management to reduce the likelihood of future occurrences.
- Bachelor’s degree in information technology, cybersecurity, computer science or a related discipline required.
- Minimum of five years of progressive experience in information security, cybersecurity, network administration or a related field; experience within the legal industry…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).