Cybersecurity Solutions Architect
Role Overview
We are seeking a client-facing, technically adept Cybersecurity Architect to join our consulting practice. This role requires deep expertise across Identity and Access Management (IAM), Cloud Access Security Broker (CASB), and Endpoint Detection and Response (EDR) technologies. The ideal candidate will lead architecture engagements, advise clients on security best practices, and design scalable, secure solutions using tools such as Okta, Auth0, or similar technologies, along with leading CASB and EDR platforms.
Key Responsibilities
Client Engagement & Solution Design:
- Act as a trusted advisor to clients, conducting security assessments and designing future-state architectures.
- Lead technical workshops, architecture reviews, and roadmap planning sessions.
- Translate business and compliance requirements into secure, scalable technical solutions.
- Present findings and recommendations to both technical and executive stakeholders.
IAM Architecture:
- Design and implement IAM solutions using Okta, Auth0, or similar technologies.
- Architect secure SSO, MFA, and RBAC strategies using SAML, OIDC, and OAuth2.
- Guide clients on identity lifecycle management, provisioning, and governance.
- Automate IAM workflows and integrations using PowerShell, Python, or Bash.
CASB & Cloud Security:
- Deploy and configure CASB platforms such as Netskope, Microsoft Defender for Cloud Apps, Zscaler, and others.
- Define and enforce DLP, access control, and shadow IT policies.
- Integrate CASB with IAM, SIEM, SOAR, and cloud platforms (Azure, AWS, GCP).
- Advise clients on cloud risk management and Zero Trust adoption.
Endpoint Security:
- Design and implement endpoint protection strategies using CrowdStrike, SentinelOne, or similar EDR/XDR tools.
- Conduct threat modeling, incident response planning, and endpoint hardening.
- Integrate endpoint tools with broader security ecosystems and automate response workflows.
Requirements
- 7+ years of experience in cybersecurity, with at least 3 years in a consulting or architecture role.
- Proven expertise in:
- IAM platforms: Okta, Auth0, or similar
- CASB tools: Netskope, MDCA, Zscaler, etc.
- EDR/XDR platforms: CrowdStrike, SentinelOne, etc
- Strong understanding of:
- Authentication protocols, cloud security, Zero Trust, and data protection
- Cloud service models (SaaS, IaaS, PaaS)
- Security frameworks (NIST, ISO 27001, MITRE ATT&CK)
- Proficiency in scripting (PowerShell, Python) and API integrations.
- ·Excellent communication and presentation skills, with the ability to lead client engagements.
Location
- On-site at our Tampa Headquarters
500 N. Westshore Blvd., Tampa, FL
Benefits
- Health Insurance
- Paid Time Off and Company Holidays
- 401k (Match)
Who We Are
Ridge IT Cyber is the top-ranked Managed Security Service Provider (MSSP) on the prestigious Inc. 5000 “America’s Fastest Growing Private Companies” of 2023. Our cutting-edge cybersecurity and IT solutions have established us as an industry leader. With extensive experience serving enterprises, small and medium-sized businesses, private commercial companies, and federal agencies, we have a unique understanding of the challenges in achieving operational goals, ensuring security, and maintaining legal compliance within budgetary constraints. We streamline our clients’ information technology needs while enhancing their operations through tailored solutions and implementation services.
Ridge IT Cyber is an equal opportunity employer. We are committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Ridge IT Cyber are based on business needs, job requirements and individual qualifications, without regard to race, color, religion, national origin, sex, pregnancy, childbirth or related medical conditions, age, marital status, sexual orientation, gender identity, family medical history or genetic information, disability, status as a veteran, or any other basis protected by applicable federal, state or local law.
