Cybersecurity Architect
Role details
Job location
Tech stack
Job description
As a Cybersecurity Architect, you will work closely with the Director of IT Architecture and fellow architects to establish, evolve, and govern HDR's enterprise security architecture. Reporting within the IT Architecture pillar, you will partner closely with the Director of Cybersecurity and cybersecurity leadership to ensure our long-term technology roadmaps are inherently resilient and aligned with the firm's risk posture. You will partner with operational technology leaders, corporate IT teams, and business stakeholders to design secure, resilient, and costeffective security capabilities that protect HDR's people, data, and platforms-supporting HDR's longterm business strategy. While our Cybersecurity GRC team manages the governance and audit requirements, you will define the technical architectural patterns that make those requirements a reality.
This is a strategic architecture role, not a security engineering or operations position. You will influence decisions, design targetstate security architectures, and guide teams as HDR advances its Zero Trust and cybersecurity maturity across identity, data, applications, infrastructure, and networks. You will be a key advocate for shifting security "left" by integrating DevSecOps principles into our infrastructure and software delivery lifecycles, ensuring that our systems are "Secure-by-Design."
What You'll Do
Architecture & Strategy
-
Define enterprise security architectures and roadmaps aligned to HDR's technology vision and risk posture.
-
Establish reference architectures and technical guardrails that satisfy NIST 800-171/53 and CMMC Level 2 frameworks without hindering business velocity.
-
Design DevSecOps patterns that automate security within CI/CD pipelines and infrastructure-as-code (IaC) workflows.
-
Provide architectural leadership for modernization initiatives.
Governance & Oversight
-
Contribute architectural expertise to security governance processes.
-
Review proposed solutions for alignment with architectural standards.
-
Serve as an expert advisor to IT Operations, Security, and other teams.
Collaboration & Leadership Influence
-
Advise leaders and technical teams on cybersecurity maturity.
-
Translate complex risks and compliance requirements into actionable architectural guidance.
-
Partner with operations teams on transition and sustainability plans.
What This Role Is / Is Not
This role is NOT:
-
A handson incident responder, SOC analyst, or penetration tester role
-
A junior or entrylevel engineering position
-
A role focused solely on operating existing security tools or tickets
-
A software development role
This role IS:
-
Architectural, strategic, crossfunctional, and enterpriselevel
-
Focused on longterm strategy and modernization efforts
-
Suited for someone who thrives in designing and guiding modern solutions
Requirements
-
Relevant certifications such as SC100, AZ500, AZ305, CISSP, CCSP, or SABSA.
-
Demonstrated depth across identity, data, application, endpoint, network, and cloud security.
-
Strong working knowledge of NIST 800-171/53 and CMMC Level 2 frameworks as they apply to architectural design
-
Experience defining reference architectures and control mappings.
-
Strong communication and influence skills.
-
Demonstrated depth across identity, data, application, endpoint, network, and cloud security.
-
Understanding of how to integrate security guardrails into automated deployment pipelines., * Bachelor's degree in a closely related field or combination of education and relevant experience
-
A minimum of 5 years of experience with administration and support of technology systems
-
Experience on project design and implementation of complex infrastructure systems
-
Proficiency in Network Admin II functions
-
In-depth technical knowledge of network and systems architectures and technologies
-
Attitude and commitment to being an active participant of our employee-owned culture, If you are required to drive for us, we require a valid driver's license and compliance with our vehicle policy.
Benefits & conditions
Our eight Employee Network Groups (Asian Pacific, Black, Hispanic/Latino(a), LGBTQ+, People with Disabilities, Veterans, Women, Young Professionals) help create a sense of belonging and foster a supportive environment where everyone is empowered to engage and contribute. Each group has an executive sponsor and is open to all employees.We provide a comprehensive benefits package that promotes employee ownership, employee health, performance, and success, which includes medical, dental, vision, short and long-term disability, life insurance, an employee assistance program, paid time away, parental leave, paid holidays, a retirement savings plan with employer match, employee referral bonus and tuition reimbursement. The expected compensation range for this position depends upon skills, experience, education and geographical location. (Stated benefits are for full-time regular positions. Temporary and part-time roles eligible for limited benefits.) Denver, Colorado, $121,270.00
