Security Architect

CBTS serves enterprise and midmarket clients in all industries across the United States and Canada. CBTS combines deep technical expertise with a full suite of flexible technology solutions--including Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, CBTS delivers comprehensive technology solutions for its clients' transformative business initiatives. For more information, please visit www.cbts.com.

Job Purpose: 

The Information Security Architect will be responsible for providing world-class security consulting services to CBTS customers. The architect will use extensive experience with security technologies, knowledge of accepted standards and best practices, and proven tactics against sophisticated attackers, to help CBTS customers defend their critical systems and sensitive data. The architect will report to the VP of Security Operations on the Cyber Security team.  

Essential Functions   

• 35% Oversee all the security solutions being implemented after sale. Work with customer technical and executive staff, review the state of various technical and organizational controls processes, and policies. Help identify gaps or improvements, comparing state to widely accepted best practices from vendors, regulatory and compliance bodies, and the security community at large. Assist in documenting these gaps, along with sensible and relevant recommendations, in findings reports that satisfy the needs of both a technical and non-technical audience.  

• 25% Using expertise in the operation of commercial and/or open-source security tools, identify configuration flaws, missing patches, and gaps in defenses that could be exploited by attackers. Types may include social engineering and phishing, network & compute, cloud, application and web security 

• 25% Assist security operations leaders and in some cases sales and pre-sales. Discuss security controls and compliance needs with customers, and help identify services that help meet those needs. Work with security sales specialists to design engagements for customers. Help craft detailed proposals that effectively communicate expectations to customers.  

• 15% Assist CBTS internal technical staff with security needs. Provide recommendations for security architecture, processes, and technologies. Assist CBTS marketing with the promotion of security branding and services. Write technical whitepapers, blog posts, and other documentation. Perform security research, furthering individual and team understanding of the threat landscape, as well as cutting-edge security technologies. Attend security conferences and participate in local security community events. Evaluate products and tools that can improve the security services¿team's offerings, and provide value to customers.   

Experience   

• 6 to 7 years of cyber security experience  

• Strong understanding of cyber security principles;  

• Strong understanding of enterprise operating systems and public cloud platforms (Windows servers and workstations, Linux/UNIX, Mac OS X, Azure, AWS) 

• Strong understanding of applications and platforms (web and application servers, messaging, database) 

• Strong understanding of network communications (TCP/IP, Ethernet, WAN/LAN technologies) 

• Familiarity with accepted security standards - NIST 800-53 & NIST CSF as well as regulatory compliance regulations - PCI-DSS, Sarbanes-Oxley, HIPAA/HITECH, FFIEC, FISMA, FERC/NERC 

• Some experience in enterprise network design and architecture 

• Experience in design, deployment, and use of security technologies (network defenses, security monitoring, wireless, DLP, encryption, host-based defenses, log management - SIEM, etc.) 

• Strong oral and written communication skills - must provide examples of written reports   

Education:   

• At least four years of college or equivalent Technical Degree is preferred CISSP/CEH/GSEC or other industry-standard information security certifications are a minimum requirement GPEN, GWAPT, GAWN, GCIH, GCFA, OSCP, OSWP, OSWE are preferred   

Special Knowledge, Skills, and Abilities   

• Experience with security platforms and supporting EDR/XDR, SIEM, DLP, Email & Collab, Next Gen Firewall, IAM, etc. tooling 

• Some hands-on experience with tactics used by the APT, Cyber Crime, and other associated threat groups 1-2 years of experience performing penetration testing Advanced GIAC/SANS certifications - GPEN, GWAPT, GCIH, GCFA, GAWN; or Offensive Security - OSCP, OSWP, OSWE  

• Experience with technical training and instruction  

• Experience with public speaking and presentation on technical topics  

• Strong writing skills - provide examples of whitepapers, blog posts, technical presentation material    

Work Environment   

• Will spend the majority of time at CBTS offices.   

Supervisory Responsibilities   

• No Supervisory Responsibility Technical team leadership for assessment team   

Miscellaneous  

• This is an exempt (Professional) position 

Due to U.S. Government requirements applicable to foreign-owned telecommunications providers, non-US citizens may be required to submit to an extensive government agency background check which will necessitate disclosure of sensitive Personally Identifiable Information.