Beacon Hill · 17 hours ago
Security Architect
Charlotte, NC
Contract
Hybrid
Senior Level, Lead/Staff
10+ years expBeacon Hill Technologies is a premier National Information Technology Staffing Group seeking a Mid-Senior Security Architect to design and evolve enterprise security architecture across on-prem and cloud environments. This role involves creating security reference architectures, collaborating with teams to enhance security operations, and leading incident response efforts.
Staffing Agency
Responsibilities
Create and maintain security reference architectures , blueprints, and roadmaps for network, endpoint, identity, cloud (AWS/Azure), and data protection
Define and govern security standards, patterns, and guardrails (e.g., network segmentation, zero trust, bastion patterns, key vaulting, least privilege)
Lead architecture reviews and threat modeling for new platforms, services, and integrations; ensure secure-by-design principles
Partner with Infrastructure, Cloud, and App Engineering to translate business goals into resilient security architecture and control objectives
Collaborate with the SOC to mature alerting, correlation, and detection engineering (SIEM/SOAR, EDR, cloud-native telemetry)
Work with Threat Hunters to refine hypotheses, prioritize visibility gaps, and improve log coverage and detections
Guide Malware Analysis inputs into control tuning, sandboxing, and endpoint hardening strategies
Serve as a technical lead during security incidents , advising on containment, eradication, and recovery playbooks
Conduct post-incident reviews ; drive root cause remediation through architecture changes and hardening measures
Partner with Penetration Testing teams to scope tests and translate findings into architectural fixes and prioritized backlog items
Oversee Vulnerability Management governance; align with Endpoint Security Engineers and domain SMEs to ensure timely patching and compensating controls
Map controls to relevant frameworks and regulations (e.g., NIST CSF/800-53, ISO 27001, CIS Benchmarks, PCI-DSS, SOC 2 )
Contribute to policy development , exception management, and control attestation; support audits and assessments
Qualification
Required
10+ years in Information Security with hands-on security engineering/analysis and 3-5+ years in security architecture roles
Strong knowledge of network protocols, firewalls, proxies, VPNs, segmentation, and zero trust concepts
Expertise across operating systems (Linux/Windows), identity & access (AD/Azure AD, SSO, MFA, PAM), and endpoint security (EDR, hardening)
Cloud security depth in AWS and/or Azure: IAM, network controls (Security Groups/NSGs), KMS/Key Vault, logging/monitoring, container security, IaaS/PaaS security patterns
Experience collaborating with SOC/IR, threat hunting, and vulnerability management teams
Soft skills: excellent communication, influence, and stakeholder leadership; ability to simplify complex risks and drive outcomes
Preferred
CISSP, CISM, CCSP, or relevant cloud/security vendor certifications (e.g., AWS Security Specialty, Microsoft SC-100/SC-200, SANS/GIAC)
Benefits
Medical
Dental
Vision
Federal and state leave programs as required by applicable agency regulations
Company
Beacon Hill
Beacon Hill was founded to set a new standard in search, career placement and flexible staffing.
1001-5000 employees
H1B Sponsorship
Beacon Hill has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (38)
2024 (94)
2023 (76)
2022 (60)
2021 (77)
2020 (86)
Funding
Current Stage
Late StageLeadership Team
Amber Leslie
Executive Assistant to CEO
Amy Van Sicklin
Chief Culture Officer
Recent News
Company data provided by crunchbase