General Summary:

The IT Security Architect – Security Platforms & Cloud Security is responsible for the architecture, design, and governance of the Agency’s enterprise security platforms that enable threat prevention, detection, response, and secure access. This role serves as the technical authority and subject matter expert for the security response ecosystem, with a strong emphasis on Palo Alto Networks technologies, including XDR/XSIAM, Prisma Access, Prisma Access Browser, CASB, and Data Loss Prevention (DLP).

This position focuses on building and maintaining a cohesive, cloud-first security architecture that aligns endpoint, network, identity, and data protection controls to support Zero Trust principles. The Security Architect partners closely with Security Operations, Network Engineering, Endpoint, IAM, Compliance, and business stakeholders to ensure security platforms are well-integrated, policy-aligned, operationally effective, and resilient against evolving threats.

This position provides architectural leadership, risk-based decision-making, and hands-on technical guidance to improve the confidentiality, integrity, and availability of Agency information assets considered through the lens of security platforms and cloud security.

Essential Duties and Responsibilities:

• Serve as the enterprise architect and technical lead for the Agency’s security response and enforcement platforms, including Palo Alto XDR/XSIAM, endpoint agents, and associated telemetry sources.

• Architect and govern Prisma Access cloud-delivered security services, including secure remote access, cloud firewalls, and traffic inspection for users, devices, and locations.

• Design and maintain Prisma Access Browser security architecture to support secure access to SaaS and web-based resources.

• Lead architecture and policy design for CASB and DLP capabilities to protect sensitive data across SaaS, cloud, web, and endpoint environments.

• Ensure consistent user, device, and application policy enforcement across endpoint, network, cloud, and browser-based security controls.

• Design and optimize detection and response use cases within XDR/XSIAM, aligning telemetry, analytics, and automation to Agency threat models.

• Partner with Security Operations to define alerting standards, response workflows, playbooks, and automation opportunities.

• Ensure security platform integrations with SIEM, SOAR, vulnerability management, IAM/PAM, and threat intelligence sources.

• Provide architectural oversight for endpoint agent deployment, configuration, performance, and lifecycle management.

• Define cloud security architecture standards for secure connectivity, segmentation, inspection, and access control using cloud-native and vendor platforms.

• Collaborate with network teams to align Prisma Access architecture with enterprise networking, SD-WAN, and hybrid connectivity models.

• Ensure security controls support Zero Trust Network Access (ZTNA) and least-privilege access models.

• Develop and maintain security platform standards, reference architectures, and design patterns.

• Ensure security platform policies align with business requirements, acceptable use standards, and regulatory obligations (e.g., PCI-DSS, HIPAA, PII, SSI).

• Support internal and external audits by providing architectural documentation, control mappings, and evidence related to security platforms.

• Participate in Change Advisory Board (CAB) reviews to assess security platform impacts of proposed changes.

• Perform security architecture reviews and threat modeling for new systems, integrations, and access models.

• Identify security gaps, misconfigurations, and control weaknesses within security platforms and recommend remediation strategies.

• Evaluate vendor solutions, new features, and roadmap capabilities to inform architectural decisions.

• Act as the primary subject matter expert for enterprise security platforms and cloud-delivered security services.

• Provide architectural guidance and mentoring to security engineers and operations staff.

• Influence cross-functional teams to achieve secure-by-design outcomes without direct authority.

• Stay current on emerging threats, cloud security trends, and security platform innovations.

• Contribute to the Agency’s multi-year security architecture roadmap and platform maturity initiatives.

• Performs other related duties as assigned.

Minimum Knowledge, Skills, and Abilities Required:

Note: An equivalent combination of related education and experience may be substituted for the below stated minimums excluding High School Diploma, GED, Licenses, or Certifications.

• Bachelor’s degree from an accredited college or university in Computer Science, Information Systems, Cybersecurity, or a related field, or equivalent experience.

• Seven (7) years of progressive experience in information security, including hands-on experience with enterprise security platforms. Demonstrated experience supporting large-scale, cloud-delivered security services in a regulated environment.

• Valid Texas Class A, B, or C driver’s license, no Driving While Intoxicated (DWI) conviction within the last sixty (60) consecutive months, not more than one (1) DWI on driving record, and not more than three (3) convictions of moving violations within the last thirty-six (36) months to operate DART non-revenue vehicles, or drive in the course and scope of job.

• CISSP or CISM required (or equivalent).

• Palo Alto Networks certifications (PCNSE, XDR/XSIAM, Prisma Access) strongly preferred.

• Cloud security certifications are a plus.

• Deep expertise with Palo Alto Networks security platforms, including XDR/XSIAM and Prisma Access.

• Strong knowledge of endpoint security agents, detection engineering, and response automation.

• Experience with CASB and DLP technologies for SaaS, cloud, and endpoint data protection.

• Understanding of cloud security architectures, secure remote access, ZTNA, and SASE models.

• Familiarity with SIEM, SOAR, threat intelligence, and vulnerability management integrations.

• Working knowledge of identity concepts and integration with IAM/PAM solutions.

• Strong understanding of NIST 800-53, NIST CSF, and ISO 27001/27002 frameworks.

• Knowledge of regulatory requirements impacting security monitoring, access control, and data protection (PCI-DSS, HIPAA, PII, SSI).

• Experience supporting audits, assessments, and control remediation activities.

• Strong architectural, analytical, and problem-solving skills.

• Excellent written and verbal communication skills with the ability to convey complex security concepts clearly.

• Ability to manage multiple initiatives and priorities in a mission-critical environment.

• Sound judgment in balancing security risk, usability, and operational impact.

• Must be able to work variable hours, to include emergency response to outages.

• Must be able to perform work from remote locations as needed.

• Must be able to work in an on-call rotation.

• Must maintain all certification(s) required for this position.

Working Conditions:

Works in an environment where there is minimum exposure to dust, noise, or temperature. May be moderately exposed to unpleasant working conditions to include dust, noise, temperature, weather, petroleum products, and chemicals while visiting DART's operating facilities, assuming incumbent is observing all policies and procedures, safety precautions and regulations, and using all protective clothing and devices provided.

Note: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. The statements are not intended to be an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may perform other duties as assigned.

DART is proud to be an Equal Employment Opportunity Employer, supporting diversity in the workplace. M/F/D/V

Open until qualified applicants are identified.

JR103188