Cyber Security Architect

Role Summary
A senior security engineering position designed to manage and enhance enterprise data protection, cross-domain data transfer, insider threat monitoring, and compliance auditing within highly regulated environments. This role involves engineering, maintaining, troubleshooting, and optimizing Data Loss Prevention (DLP) and secure data transfer platforms using Forcepoint DLP and EverFox Data Guard technologies. The position supports complex operations across distributed infrastructures, encompassing cloud environments, multi-security domains, and enterprise endpoints, contributing to ongoing security modernization efforts.

Responsibilities

• Engineer, maintain, and optimize enterprise DLP and cross-domain security platforms utilizing Forcepoint DLP, Forcepoint DDR, Forcepoint DSPM, and EverFox Data Guard technologies.
• Configure and manage DLP policies supporting endpoint, email, web, data at rest, data in motion, and data in use security requirements.
• Support and administer Web Adaptors, XML Plugins, UDP & TCP Adaptors, and multi-network data transfer solutions for secure data movement across isolated or segmented environments.
• Develop and refine detection methods, including Exact Data Matching, fingerprinting, OCR, dictionaries, and content inspection, to improve threat detection and reduce false positives.
• Troubleshoot operational issues related to TLS/SSL inspection, reverse proxies, secure web gateways, VPNs, SMTP, and cross-domain data transfers.
• Support cloud and SaaS platform data protection efforts, optimizing visibility into sensitive data movement and exfiltration risks within Microsoft 365, SharePoint, Teams, and other collaboration tools.
• Deploy and maintain policies aligned with cybersecurity standards such as IRS Safeguards, NIST SP 800-53, DISA STIG, and FedRAMP, supporting audit readiness and incident response.
• Integrate security platforms with enterprise solutions like Splunk, ServiceNow, Active Directory, and automation workflows for enhanced operational visibility.
• Participate in operational support, incident response, maintenance windows, and cross-team coordination activities to ensure the integrity of DLP and secure transfer operations.
• Support ongoing modernization initiatives aimed at cloud data protection, transfer optimization, policy standardization, and improving data visibility across enterprise environments.

Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or related field; equivalent experience considered.
• Minimum of 10 years supporting enterprise cybersecurity engineering, DLP operations, data protection, and secure transfer technologies within regulated environments.
• Proven hands-on experience with Forcepoint DLP solutions, EverFox Data Guard infrastructure, endpoint deployment, and secure data transfer workflows.
• Experience supporting AWS cloud environments, Red Hat Enterprise Linux, and Windows enterprise systems.
• Strong knowledge of DLP architectures, cross-domain security, sensitive data governance, insider threat detection, and secure transfer protocols.
• Familiarity with compliance frameworks including IRS-1075 Safeguards, NIST SP 800-53, DISA STIG, and FedRAMP requirements.
• Ability to support integrations with SIEM, Active Directory, Microsoft 365, ServiceNow, APIs, automation workflows, and enterprise security tools.
• Excellent problem-solving skills with the ability to troubleshoot complex operational issues across diverse technologies.
• Effective communication skills for client-facing interactions, solution design, and cross-team collaboration.
• This position requires eligibility for a U.S. Government security clearance. In accordance with federal law, U.S. citizenship is required.
• Availability to work on-site at the designated location.

Publishing Pay Range: $80.00 – $85.00 hourly
This position is based in office and requires employee to work on-site.