Principal Cybersecurity Architect
Posted 2025-04-22Job Overview
GENERAL SUMMARY:
The Principal, Cybersecurity Architect plays a critical role in strategically designing and implementing IT and OT security systems. Responsibilities include identifying security threats, developing protective measures, and enforcing security policies. The architect collaborates with various IT teams to integrate security into systems, utilizing cloud and network security solutions. This position balances business objectives with cybersecurity requirements and lead projects to protect the organization's data and infrastructure. This role is essential for maintaining a secure IT and OT environment.
PRINCIPAL DUTIES AND RESPONSIBILITIES: ? Oversee vulnerability testing and penetration tests in IT/OT to identify security weaknesses and recommend corrective actions. ? Architect and implement a comprehensive DevSecOps and security automation strategy, focusing on Source Code Analysis, Web Application Security, Compliance Monitoring, Threat Investigation, Threat Intelligence, Vulnerability Assessments, and Risk Analysis. ? Performs risk assessments to identify vulnerabilities and threats to the organization's systems and data. ? Crafts and implements application security procedures in compliance with relevant standards and regulations. Works with IT Compliance team to update written policies and procedures. ? Ensure that all security measures comply with internal standards as well as external regulatory requirements and conduct regular security audits. ? Review, approve, and manage the installation of IT/OT security configurations within solutions such as firewalls, VPNs, routers, and other network devices. ? Develop and implement disaster recovery procedures, respond promptly to security incidents, and provide thorough post-event analyses. ? Act as a team leader and player, fostering a collaborative environment within the cybersecurity team and across departments. This role involves mentoring team members, facilitating open communication, encouraging innovation, and ensuring that team efforts are aligned with organizational goals. ? Collaborate with senior management to develop strategic security plans and prioritize security needs and budgets. ? Attend/participate in Change management, closing cybersecurity/IT/OT security related audits and develop, maintain, and manage technology security measures designed to safeguard data, networks, and systems against unauthorized access, attacks, or damage. ? Create, implement, and manage security architecture training around IT/OT and cybersecurity components used within the organization. ? Performs other related duties as assigned.
PRINCIPAL, IT/OT CYBERSECURITY ARCHITECT 1985
MINIMUM REQUIREMENTS: ? Bachelors in computer science, Information Technology, Cybersecurity, or a related field. ? Minimum of 8 years of experience in cybersecurity. ? Certifications in CISSP, CISM, or equivalent. ? Any equivalent combination of education and/or experience may be substituted for the above.
REQUIRED KNOWLEDGE, SKILLS AND ABILITIES:
? Familiarity with various security frameworks and audit standards such as PCI DSS, NIST, HIPAA, HITRUST, ISO 27000-series, OWASP Top 10, SANS, MITRE ATT&CK, CIS Controls.
? Experience as a member of a Security Operations Center (SOC).
? Proficiency in Windows Desktop and Server, various Linux distributions (e.g., RedHat, CentOS, Oracle Linux, Ubuntu), and specialized systems like Kali.
? Knowledge of programming languages such as C, C++, C#, Go, Rust, and Java; scripting languages like JavaScript, Perl, PHP, Python, Bash, and PowerShell.
? Competence in data analytics tools and platforms. (e.g., R, Python Pandas, MS Excel, and Power BI).
? Deep understanding of networking concepts and protocols including TCP/IP, IEEE 802.11, wireless technologies, Cisco Routing & Switching, and IoT Protocols.
? Familiarity with database management systems (e.g., MySQL, Microsoft SQL, Oracle, MongoDB.
? Expertise in Dynamic Application Security Testing tools (e.g., Burpsuite, OWASP ZAP), Static Application Security Testing tools (e.g., Checkmarx CxSAST, SonarQube), and comprehensive knowledge of various vulnerability assessment tools.
? Experience with a variety of open-source and commercial penetration testing tools.
? Knowledge of version control systems like Git, GitLab, SVN.
? Proficiency in security capabilities and configurations in tools such as Ansible, Jenkins, Docker, Terraform, Kubernetes.
? Familiarity with cloud platforms like AWS, Azure, and Google Cloud.
? Experience with navigating and report-creation within SIEM tools.
? Knowledge of endpoint security solutions and practices.
? Skills in threat analysis, incident response, and familiarity with relevant tools and technologies.
? Ability to use, investigate and interpret information from packet capturing tools.
? Experience with forensic tools and methodologies.
? Familiarity with security awareness training platforms.
? Knowledge of deception technology tools.
? Proficiency in network traffic analysis tools.
? Understanding of security/risk rating tools, services, and methodologies.
SPECIAL REQUIREMENTS
? Must obtain a Security Identification Display Area (SIDA) Airport Identification/Access Badge (badge) in accordance with Department of Homeland Security Transportation Security Administration (TSA) requirements in Chapter 49 of the Code of Federal Regulations Part 1500 et. Al. and DFW Airport?s Airport Security Program within thirty (30) days from date of employment and maintain qualification for a SIDA badge upon each badge renewal.
? Ability to obtain Department of Homeland Security Customs and Border Protection (CBP) security access clearance (including secret) within thirty (30) days from date of employment and maintain qualification for CBP security access clearance upon each CBP security access renewal.
? Must pass CJIS training within thirty (30) days from date of employment
? Must pass Security Sensitive Information (SSI) training within thirty (30) days from date of employment.
? Must take Cyber awareness training within thirty (30) days from date of employment.
DESIRABLE
? Master?s Degree in computer science, Information Technology, Cybersecurity, or a related field.
? Experience in the aviation industry or a similarly regulated sector.
? Familiarity with international cybersecurity regulations and standards pertinent to the aviation sector.
EFFORTS
? Works in an office environment.
? Sits for extended periods of time.
? Uses near-visual acuity in reading written documents and statistical data.
? Uses keyboard devices and a computer monitor.
? Performs moderately complex mathematical computations.
? Exchanges information by telephone, computer, in writing, and in person.
? Drives to locations on and off Airport property.
About Us
We are Dallas Fort Worth International (DFW) Airport-one of the most successful airports in the world by any definition. We are recognized for our innovation, leadership, drive for excellence and talented employees.
Our success is made possible because of the diverse talents of over 2,100 employees who champion our mission of providing an exceptional airport experience to our customers and connect our community to the world. We are looking for the best talent to join us and help reimagine what an airport can be.
Bring your talents to DFW. Live and work with purpose.
Apply Job!