Principal Solution Architect - Northeast region

GuidePoint Security is seeking an experienced and driven security professional to join our Security Strategy & Architecture team in the Northeast. As a Principal Solution Architect, you will partner with our customers to design and implement comprehensive cybersecurity solutions that address their most critical security challenges. You will work closely with stakeholders to understand business requirements, assess current security postures, and architect robust, scalable security designs that align with organizational goals and industry best practices. As a senior-level architect you will act as a technical oversight for complex security initiatives.

Note: Must live in our Northeast region (ideally in New England or New York metro) to be considered. Up to 25% travel for client/vendor meetings, customer events, QBR's, etc.

Roles and responsibilities:

• Design comprehensive security architectures for enterprise environments including network, cloud, and hybrid infrastructures
• Conduct security assessments and gap analyses to identify weaknesses and opportunities for strategic improvements
• Develop security architecture documentation, standards, and guidelines for customers
• Collaborate with customers to align security initiatives with business objectives and regulatory requirements
• Architect zero-trust security models and implement defense-in-depth strategies
• Design and oversee implementation of identity and access management solutions
• Provide guidance on secure cloud migration strategies and cloud-native security controls
• Lead security architecture reviews for new applications, systems, and infrastructure projects
• Advise customers on emerging threats, security trends, and technology solutions
• Mentor and provide technical guidance to junior architects and security engineers
• Work with vendor partners to evaluate and integrate security technologies
• Present security architecture proposals and recommendations to executive leadership and technical stakeholders
• Conduct continual self-driven learning on cybersecurity architecture trends, frameworks, and emerging technologies
• Provide coordination and oversight to complex security service engagements
• Must live in our Northeast region (ideally in New England or New York metro) to be considered
• Up to 25% travel in our Northeast region for onsite meetings with customers, customer/vendor events, QBR's, etc.

Required experience:

• Advanced expertise in enterprise security architecture frameworks (SABSA, TOGAF, NIST Cybersecurity Framework, CISA Zero Trust Architecture, CIS Critical Security Controls)
• Deep understanding of physical and virtual network security architectures including firewalls, IDS/IPS, network segmentation, and secure network design
• Extensive experience with cloud security architectures across major platforms (AWS, Azure, GCP) including native security services and third-party integrations
• Strong background in identity and access management solutions (Active Directory, LDAP, SAML, OAuth, multi-factor authentication)
• Proficiency in security technologies including SIEM/SOAR platforms, endpoint protection, data loss prevention, and encryption solutions
• Experience with container and DevSecOps security architectures (Kubernetes, Docker, CI/CD pipeline security)
• Strong understanding of compliance frameworks and regulatory requirements (SOX, PCI-DSS, HIPAA, SOC 2, ISO 27001)
• Excellent communication and presentation skills with ability to translate technical concepts for diverse audiences
• Proven ability to lead cross-functional teams and manage complex, multi-phase security initiatives
• Strong analytical and problem-solving skills with ability to assess complex security challenges and develop innovative solutions
• Experience with risk assessment methodologies and security metrics development
• Ability to work independently while managing multiple customer engagements simultaneously
• Team-first attitude and commitment to knowledge sharing and collaborative problem-solving
• Experience with application security architecture and secure software development lifecycle (SDLC) practices is a plus
• Relevant industry certifications such as CISSP, CISSP, TOGAF, AWS Security Specialty, or similar are strongly preferred