Virtual Security Architect

Job Title: Virtual Security ArchitectLocation: 100% Remote (Need candidates only from Chester, PA)About the Role: We are seeking a highly skilled and experienced Virtual Security Architect to lead and manage the security architecture of our enterprise environment. This role will focus on overseeing the configuration, orchestration, and ongoing management of the Microsoft security stack, ensuring compliance with regulatory standards, and supporting an environment consisting of 3500 devices, 400 virtual servers, and Cisco networking infrastructure. The ideal candidate will be a cybersecurity expert with hands-on experience in Microsoft and Cisco security products, penetration testing, and security awareness training. Key Responsibilities:Microsoft Security Stack Management: Configure and orchestrate the Microsoft security stack (e.g., Microsoft Defender, Conditional Access, Data Loss Prevention, Application Consent).Lead the implementation and recurring maintenance of individual Microsoft security workloads.Oversee and manage Entra ID for identity and access management.Security Deployment Leadership: Champion security deployments, ensuring they stay on target with timelines and goals.Interpret and apply Microsoft innovations to improve the client’s environment.Provide quarterly reports on Microsoft security architecture, including Conditional Access insights, device hardening, and data loss prevention.Device and Infrastructure Security:  Secure and maintain 3500 devices (HP Windows PCs, Cisco switches, routers, firewalls, and appliances).Ensure the security of 400 virtual servers, Cisco UCS chassis, and ExaqVision servers.Manage and protect 3100 users on Microsoft Exchange Online (G3).Compliance and Standards: Ensure adherence to regulatory standards including NIST, CJIS, and HIPAA.Align security architecture with compliance requirements across all systems and processes. Penetration Testing:  Oversee and coordinate internal and external penetration testing. Collaborate with internal teams and third-party vendors to mitigate vulnerabilities.Security Awareness: Lead and maintain Security Awareness Training programs to educate employees on cybersecurity best practices. Systems Management:   Manage and maintain security configurations and updates through Microsoft SCCM.Qualifications :Education: Bachelor’s degree in Cybersecurity, Information Technology, or related field. Relevant certifications (e.g., CISSP, CISM, Azure Security Engineer) are highly preferred. Experience: 7+ years of experience in cybersecurity, with a focus on security architecture.Hands-on experience with the Microsoft security stack, including Microsoft Defender, Conditional Access, Entra ID, and Data Loss Prevention.Extensive experience securing Cisco network infrastructure (switches, routers, firewalls, UCS chassis).Proven experience managing hybrid environments (on-premise and virtual servers).Familiarity with regulatory frameworks such as NIST, CJIS, HIPAA. Technical Skills: Proficiency with Microsoft SCCM and Microsoft security solutions.Strong understanding of Cisco security products and infrastructure.Experience coordinating penetration testing efforts and addressing vulnerabilities.Knowledge of security awareness training best practices. Certifications:  CISSP, Azure Security Engineer, Microsoft Certified: Security Operations Analyst, or Cisco security certifications are highly preferred. Soft Skills:Strong leadership and collaboration abilities to work with internal and external stakeholders.Excellent communication skills for reporting and stakeholder engagement.Analytical mindset with problem-solving capabilities to address complex security challenges.