Senior Information Security Architect

Job Title: Information Security Architect Location: Remote (US)

This is a Direct Hire role at our key client.

Position Summary: We're seeking an experienced Information Security Architect to lead the design and evolution of our enterprise-wide security architecture. You'll protect a diverse ecosystem spanning corporate IT, telecom endpoints, mobile telephony networks, IoT endpoints, and emerging AI technologies across cloud and hybrid environments.

Adopting a defense-in-depth and zero-trust mindset, you'll ensure alignment with industry frameworks (NIST, ISO 27001, CIS) and strict regulatory requirements (FCC, HIPAA). A major focus will be on establishing robust AI security guardrails, particularly for Agentic AI, LLMs, data provenance, and model governance.

This fully remote role partners closely with SecOps, EA, Network Engineering, Cloud, and AI Innovation teams to build resilient, scalable, and compliant security frameworks that support our client's growth and mission.

Key Responsibilities

Security Architecture & Design

• Develop and maintain a comprehensive enterprise security architecture framework for IT, telecom endpoints, mobile, and IoT platforms.
• Lead cybersecurity initiatives enterprise-wide, aligning with NIST, ISO, CIS, and zero-trust principles across multi-cloud (AWS, Azure) and hybrid environments.
• Evaluate emerging security technologies and processes to proactively address evolving threats.
• Provide strategic direction for security infrastructure (firewalls, VPNs, IPS), vulnerability management (leveraging tools like Rapid7), and hardening standards.
• Embed security-by-design in all initiatives, from product development to infrastructure modernization, in partnership with Enterprise Architecture and Tech Ops.

AI and Data Security

• Define and implement guardrails for AI/ML systems, including model access controls, prompt sanitization, drift monitoring, and data provenance.
• Establish governance policies for secure AI API/LLM usage and autonomous agent frameworks.
• Ensure AI data pipelines meet FCC, HIPAA, and privacy standards, with consistent encryption, masking, and protection in collaboration with data teams.

Telecom, Mobile & IoT Security

• Oversee Security Arch for implementations of secure voice, IoT, and 3rd-Party telecom networks, including signaling protocols and device provisioning.
• Drive secure configurations, firmware lifecycle management, encryption, authentication, and segmentation for mobile devices and IoT/edge environments.
• Maintain compliance with FCC, CPNI, and CALEA requirements across telecom endpoint infrastructure.

Governance, Risk & Compliance

• Ensure ongoing alignment with FCC, HIPAA, NIST 800-53, ISO 27001, and CIS controls.
• Support risk assessments, audits, remediation, and architecture reviews.
• Define key security metrics and collaborate with Legal, Compliance, and Audit teams for regulatory readiness.

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

Collaboration with SecOps

• Partner with the SOC on threat modeling, detection strategies, incident response architecture, and threat intelligence integration.
• Contribute to SIEM design, vulnerability management, and secure configuration baselines.

Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field (Master’s preferred).
• 7+ years of progressive experience in information security architecture and operations.
• Relevant certifications: CISSP, CCSP, SABSA, CISM, TOGAF, and/or AI Security Specialist (strongly preferred).
• Deep expertise in network, cloud, and application security across telecom, IT, and IoT ecosystems.
• Proven experience securing AI/ML platforms, including governance for LLMs.
• Strong knowledge of regulatory frameworks (FCC, HIPAA, NIST, ISO 27001).
• Hands-on experience with cloud-native security (AWS, Azure) and DevSecOps tooling.
• Practical expertise with EDR platforms, vulnerability management (Rapid7), and SIEM solutions.
• Solid understanding of network security, including firewalls, VPNs, and intrusion prevention systems.
• Excellent communication and collaboration skills; ability to influence cross-functional teams and translate complex security concepts to stakeholders.