Cybersecurity Architect

The Cybersecurity Architect will contribute to the design, implementation, and support of ECI’s flagship security platform and other security products across the organization. This role is ideal for a technically adept and strategically minded professional with a strong background in systems architecture, integration, and cybersecurity. The Architect will be responsible for shaping our Managed XDR infrastructure, aligning technology with business risk, and ensuring scalable, resilient, and compliant security operations.  Key Responsibilities 

• Design and architect security solutions including SIEM, SOAR, EDR/MDR, cloud security, and identity platforms.
• Collaborate with engineering, service, and leadership teams to align security architecture with business and regulatory requirements.
• Maintain the ingest and processing of data streams from ECI supported enterprise technologies
• Support and maintain existing security platforms, ensuring optimal performance, scalability, and compliance.
• Stay up to date on our vendor releases and product roadmaps
• Reduce manual operations through strategic automation and workflow optimization.
• Develop and maintain architectural documentation, standards, and reference models for internal and external stakeholders.
• Stay current with evolving threat landscapes, regulatory changes, and industry best practices.

The opportunity will be Hybrid, 3 days in office and 2 days remote for applicants living or around New York city, Chicago and Dallas. The role will be remote for applicants living in or around Wayne, Minneapolis and Boston. 

• Degree in Computer Science, Cyber Security or adjacent field, or comparable industry experience.
• Proven experience supporting enterprise architectures.
• Strong understanding of security domains: threat detection, incident response, logging, alerting, and vulnerability management.
• Familiarity with cloud environments (Azure, AWS) and hybrid infrastructure.
• Experience with SIEM platforms (e.g., Splunk, Sentinel, Elastic), SOAR tools, and EDR/MDR technologies.
• Solid grasp of networking, operating systems (Linux/Windows), and identity/access management.
• Excellent communication, documentation, and stakeholder engagement skills.
• Ability to work independently and manage multiple priorities in a dynamic environment.
• Familiarity with the Elastic ELK stack.

• Familiarity with the MITRE ATT&CK framework and its application in detection engineering.
• Exposure to security automation frameworks (SOAR, MISP, Sigma).
• Knowledge of cloud security architecture and best practices.
• Experience in security operations, threat hunting, or incident response.