Lead enterprise security architect job offer

Lead Enterprise Security Architect

02 Sep 2025

Texas, Houston, 77002

Report job

Vacancy expired!

USB policy (M365 and Group Policy)

EndPoint Firewall (CIS Controls / Group Policy)

Data Loss Prevention (M365, AIP, unified labeling client)

Intune policy

Always-On VPN via Prisma Access

URL Filtering off-net via Prisma Access

Restricting VPN access

Removing Non-CNP devices for employees

Moving contractors with Non-CNP devices from VPN to VMWare RDSH, or Azure App Proxy, where appropriate)

Apply CIS Benchmarks to Domain Controllers (firewalls, etc)

Apply CIS Benchmarks to critical servers (if feasible)

Restrict remote access to include PAM and clean access devices (VDI) and restrict access via Palo Alto Firewalls where appropriate

Cloud Security Posture Management (Azure, OCI, GCP) - Prisma Cloud

Firewall implementation for IaaS environments - Palo Alto firewalls (Teams move to IBM)

Follow existing recommendation for DLP, USB, Remote Access policy

Work with Data Privacy and Security Lead to implement security around defense-related data

Assist in preparations for a pen test based upon previous observations

Advise on status of all projects and ongoing work

Inform leadership of any issues or potential risks to projects or ongoing work

Coordinate in conjunction with the Security Project Manager and IT Managers any upcoming changes, communications, or other significant project events