Cyber Security Architect II

We work alongside the best and brightest to do incredibly cool things you wouldn't believe. At Roush, you're part of building the future. Are you someone that has a passion for providing innovated solutions to complex challenges? Do you want to work someplace where creativity and new ideas are encouraged? If so, then keep reading.

We fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense, and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage.

Are you looking for a new challenge? Roush is looking to add a Cyber Security Architect II to join their team. Roush is looking for a Cyber Security Architect to design, implement, and manage enterprise security controls across Microsoft 365, EDR tools, Vulnerability Management, and Data Loss Prevention (DLP) solutions.This position is a hybrid role. Location is located in Livonia, MI.

As a Cyber Security Architect II, you will:

• Lead the implementation and optimization of security and compliance capabilities within Microsoft 365, ensuring alignment with Roush’s security requirements and regulatory requirements.
• Design, implement, and manage Identity and Access Management (IAM) strategies, including role-based access control (RBAC), least privilege principles and multi-factor authentication (MFA) solutions, etc.
• Perform vulnerability assessments and remediation. Collaborate with technical teams to prioritize and remediate vulnerabilities based on risk.
• Audit endpoint and server patching processes to identify gaps, ensure timely remediation, and improve overall patch compliance.
• Define and implement technical and business processes for data protection, leveraging tools to safeguard sensitive data and ensure privacy, security, and integrity.
• Collaborate with DevOps teams to integrate security practices into the software development lifecycle (SDLC), including secure coding standards, code review processes, and automated security testing.
• Lead cyber security education and simulated phishing tests
• Evaluate and manage third-party vendor security risks, conduct security assessments and ensure business associates comply with security requirements.
• Conduct ongoing research into evolving threat landscapes, vulnerabilities, and mitigation techniques to inform detection, response, and remediation strategies.

Minimum qualifications to be considered:

• Bachelor’s degree in computer science, Computer Engineering, or related experience.
• Minimum of 5 years of hands-on experience managing Microsoft 365 security tools or comparable cloud platforms (e.g., Vulnerability Management, EDR) with a strong focus on risk-based remediation.
• U.S. Citizen or U.S. Permanent Resident allowing for International Traffic in Arms Regulations (ITAR) compliance.
• Experience with cloud-delivered commercial and government-based solutions such as Microsoft M365-E5/Azure, Amazon Web Services and Google Cloud Platform, and experience with IT backup and disaster recovery systems.
• Working knowledge of NIST CSF, 800-171, CMMC, ISO-27001, TISAX, MS-365 Security & Compliance, DLP, SIEM, EDR, Email Security, Vulnerability Management, Incident management, TCP/IP (Transmission Control Protocol/Internet Protocol), DNS (Domain Name System), and DHCP (Dynamic Host Configuration Protocol).
• Knowledge of firewalls, switches, servers (Windows, LINUX) and databases.
• Understanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilities.
• Ability to act effectively as a technical resource.
• Excellent communication skills including ability to interact effectively with customers, vendors, and team members and strong leadership and organizational skills

A successful candidate may also have:

• Master’s degree in business or information technology or related field.
• Minimum 5 years of professional experience supporting, securing, and maintaining networks, servers, and cloud environments.
• Certification(s) in information security such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc.
• Hands-on experience designing, implementing, and operating enterprise security controls, platforms, and tooling across cloud and on-prem environment

Our full-time benefits include: medical, dental, vision, life insurance, earned sick time, STD, LTD, 401K, tuition reimbursement, paid vacation, paid holidays, and more .

If you share our passion for providing innovative solutions to complex challenges, we want you on our team.
Please visit our careers page and apply by clicking on this link: /

Visit our website:

Like us on Facebook:

Roush is an EO employer – Veterans/Disabled and other protected categories
If you need a reasonable accommodation for our employment application process due to disability, please contact Roush Talent Acquisition at 734-779-7087.
#Zip