Cyber Security Architect

About UsHighland Electric Fleets’ electrification-as-a-service (EaaS) model aims to make electric school buses and other clean heavy duty vehicles attainable for every district across the US and Canada. Our turnkey solution tackles financing, vehicle procurement, infrastructure upgrade and maintenance to create a reliable and affordable fleet for our customers.
We know that cleaner buses create healthier communities and it’s our mission to eliminate the barriers to better student health and cleaner air - just 10 electric buses will reduce the pediatric asthma risk for 1,500 students!*
We are looking for candidates that want to help support this mission…
*Source: American Journal of Respiratory and Critical Care Medicine. Based on estimates for Highland customer with large fleet
We are seeking a seasoned and strategic Principal Cybersecurity Architect to lead the design, implementation, and governance of our cybersecurity architecture and IT infrastructure standards. This role is ideal for a hands-on security leader who can bridge strategy and execution, oversee planning and delivery, and work with external security providers to define and implement scalable controls across our cloud-first environment.
As a key technology team member, you will implement cybersecurity frameworks (e.g., NIST), configure and deploy security tooling, oversee MSPs for IT operations and security, and ensure security is embedded in system design, cloud environments, device standards, and identity management. You will also support audit readiness, compliance, and proactive risk mitigation across the organization.
The ideal candidate has a deep background in system administration and cybersecurity and extensive experience creating secure architectures, deploying security technologies, and setting security standards in a multi-cloud, modern IT landscape.

Key Responsibilities:

• Security Architecture, Standards & Implementation: Design, implement, and continuously improve security architecture across cloud, device, and infrastructure environments. Own and evolve cybersecurity standards, policies, and procedures.
• Frameworks & Compliance: Lead the implementation of security frameworks (e.g., NIST, NERC CIP). Support internal and external audits through controls, documentation, and continuous readiness.
• Vendor & MSP Oversight: Manage relationships with external providers delivering IT operations, cybersecurity services, and project implementations. Ensure accountability, security alignment, and quality delivery.
• Identity & Access Management: Implement and manage identity controls, including SSO, MFA, and RBAC, to support secure and seamless access across applications and infrastructure.
• Data Security & DLP: Deploy cloud-based data protection strategies and data loss prevention (DLP) solutions across productivity, collaboration, and enterprise systems.
• Device Standards: Own the standards and policies for endpoint security, configuration baselines, operational technology, and device lifecycle management across all user endpoints.
• System Design, Configuration & Support: Provide hands-on architectural guidance and security design for new and existing systems. Work closely with internal teams to ensure secure configurations and implementation strategies.
• Data Governance & AI Compliance: Establish and maintain data governance policies, classification, and controls. Partner with cross-functional teams to ensure responsible AI use, privacy, and security alignment with evolving compliance standards.
• Incident Response & Risk Mitigation: Support incident response planning and proactive risk identification. Dive in to assist during events or investigations.
• Collaboration & Leadership: Partner across technical and business teams to embed security best practices into operations. Lead cross-functional initiatives and represent security in strategic planning.

Required Qualifications

• 15–20 years of experience in IT system administration and cybersecurity, with progressively increasing responsibility
• Strong hands-on knowledge of infrastructure, cloud platforms (e.g., Microsoft 365, Azure, AWS), endpoint management, and security tooling
• Proven experience implementing and maintaining security frameworks (e.g., NIST, NERC/FERC, ISO 27001)
• Experience managing MSPs, MSSPs, or other external vendors for IT and security services
• Deep understanding of security operations, controls, identity management, and data protection strategies

Desired Qualifications

• Bachelor &/or master’s degree in information security, Computer Science, Information Systems, or a related field
• Industry certifications such as CISSP, CISM, CRISC, CCSP, or similar
• Experience supporting regulatory audits or compliance initiatives
• Familiarity with cloud security standards and zero-trust architecture
• Background in project management or system implementation across multiple business units

What You Can Expect from Highland:· Competitive base salary and performance-based bonus program· A supportive, highly collaborative, team-oriented environment· Opportunities to make a difference, be heard, add value, and be recognized· Growth and development with a leader in this new and exciting industry· Ability to work with bright, innovative, and forward-thinking colleagues· Health, Vision, and Dental coverage for employees & their dependents· Life insurance, public transportation assistance· Generous Paid Time Off· 401(k) program and company match

Highland Electric Fleets provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, Highland Electric Fleets complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.