Cybersecurity Architect

Cyber Security Architect – MERS

Mid‑Senior level, full‑time position located at MERS main office in East Lansing, MI. This role leads the design, implementation, and optimization of security solutions, ensuring alignment with NIST and CIS frameworks and supporting multi‑cloud environments.

• Design, implement, and continuously optimize security solutions mapped to NIST and CIS frameworks, ensuring infrastructure supports MDR operations and compliance requirements across MERS.
• Integrate MDR platform feeds, alerts, and automation into core IT workflows, enabling rapid threat detection and automated response for operational security.
• Serve as the technical SME for the Cyber Incident Response Team (CIRT), authorizing and initiating technical incident response actions, including containment and remediation strategies during cyber events.
• Make technical decisions regarding the selection, implementation, and modification of security technologies and protocols to address organizational needs and evolving threats.
• Ensure system availability and reliability through proactive monitoring and maintenance.
• Provide technical leadership, mentorship, and skill development to the Cybersecurity team members.
• Coordinate and monitor annual penetration testing, leading vulnerability management initiatives and prioritizing remediation efforts.
• Conduct proactive threat hunting to identify hidden risks and address potential security gaps.
• Facilitate threat modeling efforts for critical MERS applications and provide critical security recommendations and architectural improvements.
• Support MERS vendor risk management program by overseeing third‑party vulnerabilities and collaborating on risk mitigation strategies.
• Develop and maintain disaster recovery plans and participate in their implementation, planning, and testing.
• Advise on security best practices for new and ongoing MERS initiatives, serving as the cybersecurity subject matter expert for program and project development.

• Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or relevant field, or equivalent combination of education and experience.
• Five or more years of experience in IT security, including endpoint protection, SIEM, SOAR, DLP, EDR, and other security tools.
• Five or more years of experience with security monitoring, diagnostics, vulnerability management, and analytics tools.
• Demonstrated experience in Cybersecurity policy and standards definition.

• Microsoft Certified, Azure Security Engineer, Cybersecurity Architect Expert, CISSP, or Certified Ethical Hacker (CEH).

• Experience operating in a Security Operations Center (SOC).
• Experience supporting public cloud security services (especially Azure and Purview).
• Experience with endpoint vulnerability management.
• Networking expertise.
• CISSP.

• Professional certification in security specialization (CISSP or equivalent) preferred, or willingness/ability to obtain within the first year of employment.

All work performed on site at MERS main office or remote work location. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.