Security Architect, Applied Technology Services

Security Architect (Managed Services / Client-Facing)

Opensity Solutions is seeking a highly experienced Security Architect to establish and mature security foundations across our client portfolio. This role is responsible for defining and implementing reference security architectures
, driving best‑in‑class security standards
, and leading response efforts during security incidents. The Security Architect will operate as both a strategic advisor and hands‑on technical leader
, ensuring alignment with industry frameworks (e.g., CIS Benchmarks) while tailoring solutions to the unique needs of legal‑sector clients and complex MSP environments.

• Define, maintain, and evolve reference security architecture standards across client environments (cloud, hybrid, and on‑prem).
• Design scalable, repeatable security frameworks aligned to CIS Benchmarks, Zero Trust principles, and industry best practices.
• Establish baseline security configurations for:
  • Identity & Access Management (Entra  / Azure AD)
  • Endpoint Security (Microsoft Defender suite)
  • Network Security (firewalls, segmentation, DNS protection)
  • Data Protection & Compliance

• Serve as a trusted advisor to clients, translating security strategy into actionable roadmaps.
• Lead security assessments and remediation planning leveraging tools such as Rapid7 and Inforcer.
• Develop and standardize security offerings within the MSP model (e.g., Secure Score improvements, vulnerability management programs).

• Act as the technical lead during security events and incidents, coordinating cross‑functional response efforts.
• Provide guidance on containment, eradication, and recovery strategies.
• Conduct post‑incident reviews and implement architectural improvements to prevent recurrence.

• Architect and optimize integrations across security tooling, including:
  • Rapid7 (vulnerability management / SIEM)
  • Microsoft Defender (Endpoint, Identity, Cloud)
  • Cisco Umbrella (DNS‑layer security)
  • Inforcer (Secure Score and posture management)
• Partner with NOC, Engineering, and Security Operations teams to ensure:
  • Effective alerting and escalation workflows
  • Reduction of false positives
  • Alignment with Service Now‑driven incident processes

• Design and secure Microsoft Azure environments, including:
  • Azure networking and segmentation
  • Identity and conditional access policies
  • Defender for Cloud and cloud workload protection
• Provide architectural oversight for:
  • Server infrastructure (Windows/Linux)
  • Virtualization platforms
  • Backup and disaster recovery security considerations

• Ensure client environments align with industry standards and regulatory expectations, particularly within the legal sector.
• Contribute to security policy development, standards, and documentation.
• Support audits, risk assessments, and compliance initiatives.

• 10+ years of experience in cybersecurity, with a strong focus on architecture and design
• Proven experience in an MSP or multi‑client environment
• Deep expertise across:
  • Microsoft Azure and Azure security best practices
  • Identity & Access Management (Entra  / Azure AD)
  • Endpoint security (Microsoft Defender suite)
  • Networking, firewalls, and secure architecture design
• Hands‑on experience with:
  • Rapid7
  • Inforcer
  • Cisco Umbrella
• Strong understanding of:
  • CIS Benchmarks
  • Zero Trust architecture
  • Security frameworks (NIST, ISO 27001, etc.)

• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience)
• One or more advanced certifications strongly preferred:
  • CISSP (Certified Information Systems Security Professional)
  • CISM (Certified Information Security Manager)
  • CCSP (Certified Cloud Security Professional)
  • Microsoft Security Certifications (e.g., SC-100, SC-200)
  • Azure Solutions Architect Expert (AZ-305)

• Strategic thinker with the ability to translate security into business value
• Strong incident leadership and crisis management capabilities
• Excellent client‑facing communication skills, including executive‑level engagement
• Ability to operate across multiple clients and environments simultaneously
• Deep understanding of MSP delivery models, SLAs, and operational workflows

• Measurable improvement in client security posture (e.g., Secure Score, vulnerability reduction)
• Reduction in security incident frequency and severity
• Adoption of standardized reference architectures across clients
• Improved MTTR for security incidents
• Increased client satisfaction and trust in Opensity’s security capabilities

$58,073.00 - $