at Black & Veatch in Montpelier, Vermont, United States
Sr. Cyber Security Architect
Date: Nov 21, 2021
Company: Black & Veatch Family of Companies
We believe real value is powered by the unique skills and experiences of our professionals. The interchange of ideas from a diverse group of people gives our teams an expanded perspective and the ability to find better solutions for our clients.
Company : Black & Veatch Corporation
Req Id : 54463
Job Title : Sr. Cyber Security Architect
Location : USVRTL
Business Unit Sector : COR-CORP-CIO
Opportunity Type : Staff
Relocation eligible : No
Full time/Part time : Full-Time
Project Only Hire : No
Visa Sponsorship Available: No
The Senior Cyber Security Architect (a Sr. Manager role), under the direction of CISO, will be responsible to build a resilient cyber architecture and play an integral part in protecting Black & Veatch from cyber threats by developing cyber security controls and design patterns. In this role, the architect will work closely with key IT and Business Unit stakeholders to review, recommend and implement best practices on data security, network security, cloud and application architecture to ensure compliance with Black & Veatch’s IT architecture policies, processes, and technology components.
+ Responsible for ongoing security architecture review and development of cyber security controls for Identity Access Management, Data Security and Governance, Application security, Cloud, and Network Infrastructure.
+ Develop and maintain documentation on design patterns and security architecture requirements
+ Collaborate with IT and business stakeholders, and enterprise architects, to understand the business direction and consequent impact of implementing cyber security architecture changes and control adoption
+ Assist in optimizing cyber security program by implementing Policies, Standards, and Security baselines
+ Monitor industry best practices and trends to support the ongoing development of cyber controls to remediate current and emerging cyber threats
+ Develop and implement Zero Trust Framework for Identity Access Management, Data Security and governance; data loss prevention, encryption controls, application security, endpoint security, web & email security, cloud security, FW/IPS, SD-WAN and NAC controls
+ Review Security Operations Center reports, threat reports, audit reports, and regulatory changes to identify and initiate risk prioritization and remediation
+ Partner with security service providers to drive improvements in the security posture
+ Continuously monitor and evaluate the environment, including third party integrations, through self-assessments and independent security reviews
+ Assess and manage Cloud security posture through continuous control monitoring
+ Define and implement security mitigation plan to quickly respond to control weaknesses and threats
+ Perform other duties as assigned
Experience in IAM, Data Security & Governance, Cyber Defense, Security Engineering & Architecture
Highly motivated individual with the ability to self-start, prioritize, multi-task, and has a “can-do” attitude
Knowledge of current threats and best practices in the Cyber Security and OT security
Available and participate in on-call duties and provide after-hours support as needed
Ability to communicate and work effectively with others, harness different skills and experience, and build a strong sense of team spirit
Action and results-oriented with the ability to overcome obstacles, able to work well under deadlines in a changing environment
Ability to adjust quickly to shifting priorities, and decision-making skills with limited information
Excellent verbal communication, and interpersonal skills to document and communicate findings, escalate critical findings to stakeholders
Education: Bachelor’s degree in Information Security or Computer Science or related field
Experience: Minimum 10 years of experience in Cyber Security, Security Architecture & Engineering
+ Must have 5 years of experience in designing Zero Trust Architecture for IAM, Data Security, Cloud, Network and Applications
+ At least one certification such as CISSP, CCSP, CISM, GIAC
+ Demonstrated experience applying security and risk frameworks, and regulations such as NIST CSF/800-53/800-171, NERC CIP, CIS, CMMC, OWASP, CSA, etc.
+ Deep technical knowledge and experience in IAM, Network Security, Cloud Security, Application Security, Endpoint, Firewall/IPS, Web and Email security
+ Experience in Data Security controls, Encryption, DLP, and Third-party security
All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.#LI-JR1
Must hold at least 1 certification such as CISSP, CISM, CISA, CRISC, CIPP or similar privacy certifications.
Work Environment/Physical Demands
Typical office/home office environment. Physical Demands: Sitting, talking, grasping, hearing, keyboard input, seeing, writing, reaching, stooping, crouching, walking, standing for extended periods of time, extensive screen time.
ITS: Information Technology Service
Black & Veatch endeavors to makeaccessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process because of a disability, please contact the Employee Relations Department at +1-913-359-1622 or via our. This contact information is for disability accommodation requests only; you may not use this contact information to inquire about the status of applications. General inquiries about the status of applications will not be returned.
Black & Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe and healthy.
Our comprehensive benefits portfolio is a key component of this commitment and offers an array of health care benefits including but not limited to medical, dental and vision insurances along with disability and a robust wellness program.
To support a healthy work-life balance, we offer flexible work schedules, paid vacation and holiday time, sick time, and dependent sick time.
A variety of additional benefits are available to our professionals, including a company-matched 401k plan, adoption reimbursement, tuition reimbursement, vendor discounts, an employment referral program, AD&D insurance, pre-taxed accounts, voluntary legal plan and the B&V Credit Union. Professionals may also be eligible for a performance-based bonus program.
We are proud to be a 100 percent ESOP-owned company. As employee-owners, our professionals are empowered to drive not only their personal growth, but the company’s long-term achievements – and they share in the financial rewards of the success through stock ownership.
By valuing diverse voices and perspectives, we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients.
Black & Veatch Holding Company, its subsidiaries and its affiliated companies, complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Black & Veatch does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status, pregnancy status or other status protected by law.
For our EEO Policy Statement, please clickTo view full details and how to apply, please login or create a Job Seeker account