Security Architect, Applied Technology Services

Our mission is to provide modernized technology platforms, elevated technology support, and valuable insights, empowering our clients to excel in what they do best.

Security Architect (Managed Services / Client-Facing)

Role Overview

Opensity Solutions is seeking a highly experienced Security Architect to establish and mature security foundations across our client portfolio. This role is responsible for defining and implementing reference security architectures, driving best-in-class security standards, and leading response efforts during security incidents.

The Security Architect will operate as both a strategic advisor and hands-on technical leader, ensuring alignment with industry frameworks (e.g., CIS Benchmarks) while tailoring solutions to the unique needs of legal-sector clients and complex MSP environments.

Key Responsibilities

Security Architecture & Strategy

• Define, maintain, and evolve reference security architecture standards across client environments (cloud, hybrid, and on-prem).

• Design scalable, repeatable security frameworks aligned to CIS Benchmarks, Zero Trust principles, and industry best practices.

• Establish baseline security configurations for:

  • Identity & Access Management (Entra ID / Azure AD)

  • Endpoint Security (Microsoft Defender suite)

  • Network Security (firewalls, segmentation, DNS protection)

  • Data Protection & Compliance

Client Security Enablement

• Serve as a trusted advisor to clients, translating security strategy into actionable roadmaps.

• Lead security assessments and remediation planning leveraging tools such as Rapid7 and Inforcer.

• Develop and standardize security offerings within the MSP model (e.g., Secure Score improvements, vulnerability management programs).

Incident Leadership & Response

• Act as the technical lead during security events and incidents, coordinating cross-functional response efforts.

• Provide guidance on containment, eradication, and recovery strategies.

• Conduct post-incident reviews and implement architectural improvements to prevent recurrence.

Tooling & Security Operations Alignment

• Architect and optimize integrations across security tooling, including:

  • Rapid7 (vulnerability management / SIEM)

  • Microsoft Defender (Endpoint, Identity, Cloud)

  • Cisco Umbrella (DNS-layer security)

  • Inforcer (Secure Score and posture management)

• Partner with NOC, Engineering, and Security Operations teams to ensure:

  • Effective alerting and escalation workflows

  • Reduction of false positives

  • Alignment with ServiceNow-driven incident processes

Infrastructure & Cloud Security

• Design and secure Microsoft Azure environments, including:

  • Azure networking and segmentation

  • Identity and conditional access policies

  • Defender for Cloud and cloud workload protection

• Provide architectural oversight for:

  • Server infrastructure (Windows/Linux)

  • Virtualization platforms

  • Backup and disaster recovery security considerations

Governance, Risk & Compliance

• Ensure client environments align with industry standards and regulatory expectations, particularly within the legal sector.

• Contribute to security policy development, standards, and documentation.

• Support audits, risk assessments, and compliance initiatives.

Required Qualifications

• 10+ years of experience in cybersecurity, with a strong focus on architecture and design

• Proven experience in an MSP or multi-client environment

• Deep expertise across:

  • Microsoft Azure and Azure security best practices

  • Identity & Access Management (Entra ID / Azure AD)

  • Endpoint security (Microsoft Defender suite)

  • Networking, firewalls, and secure architecture design

• Hands-on experience with:

  • Rapid7

  • Inforcer

  • Cisco Umbrella

• Strong understanding of:

  • CIS Benchmarks

  • Zero Trust architecture

  • Security frameworks (NIST, ISO 27001, etc.)

Certifications (Required / Preferred)

• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience)

• One or more advanced certifications strongly preferred:

  • CISSP (Certified Information Systems Security Professional)

  • CISM (Certified Information Security Manager)

  • CCSP (Certified Cloud Security Professional)

  • Microsoft Security Certifications (e.g., SC-100, SC-200)

  • Azure Solutions Architect Expert (AZ-305)

Key Competencies

• Strategic thinker with the ability to translate security into business value

• Strong incident leadership and crisis management capabilities

• Excellent client-facing communication skills, including executive-level engagement

• Ability to operate across multiple clients and environments simultaneously

• Deep understanding of MSP delivery models, SLAs, and operational workflows

Success Metrics

• Measurable improvement in client security posture (e.g., Secure Score, vulnerability reduction)

• Reduction in security incident frequency and severity

• Adoption of standardized reference architectures across clients

• Improved MTTR for security incidents

• Increased client satisfaction and trust in Opensity’s security capabilities

Opensity is an Equal Opportunity Employer. 

We are committed to providing equal employment opportunities to all applicants and employees and do not discriminate on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity or expression, national origin, age, disability, genetic information, veteran or military status, or any other characteristic protected by applicable federal, state, or local law. 

Employment decisions at Opensity are based on qualifications, merit, and business needs. This policy applies to all aspects of employment, including recruitment, hiring, promotion, compensation, training, discipline, and termination. 

Opensity is committed to providing reasonable accommodations for qualified individuals with disabilities, for pregnancy related conditions, and for sincerely held religious beliefs, in accordance with applicable law. We do not tolerate retaliation against individuals who raise concerns or participate in an investigation related to equal employment opportunity.