Ritter Communications is the largest privately held telecommunications provider serving exclusively the Mid-South, offering world-class broadband fiber, telecom, video, cloud and data center services. The company has grown rapidly over the years, investing millions recently in technology infrastructure and is now serving 155 communities and more than 57,000 customers in Arkansas, Texas, Missouri and Tennessee. Headquartered in Jonesboro, Arkansas, Ritter Communications invests heavily in the communities it serves by deploying proven, best-in-class infrastructure and technology, while coupling it with a world-class customer-focused experience.
General Summary:
The Cybersecurity Architect is responsible for the development and standardization of comprehensive security strategies to protect the organization’s network infrastructure, develop/test proper identification, and response procedures for Ritter Operations team. This role requires a deep understanding of network protocols, security technologies, and industry best practices.
Essential Job Functions:
- Designs and implements secure network architectures, including firewalls, VPNs, Service Provider DDOS, intrusion detection systems (IDS), log management, general service provider access/infrastructure security suites, and other security devices;
- Conducts risk assessments and security audits to identify vulnerabilities and recommend remediation strategies;
- Develops security policies, standards, and procedures to ensure compliance with regulatory requirements;
- Collaborates with Architecture, Engineering, and operational teams to integrate security into system design and development processes;
- Establishes standards for monitoring network traffic for suspicious activity and respond to security incidents promptly;
- Conduct red/blue team exercises;
- Stays current with emerging threats, vulnerabilities, and technology trends in the cybersecurity landscape;
- Conducts regular security assessments and vulnerability scans to identify potential risks and threats;
- Provides technical guidance and operational and engineering groups regarding network security practices;
- Documents network security configurations, processes, and incident response procedures;
- Provides support and final escalation for operational and engineering groups;
- Establishes lifecycles and budgets for all security equipment and products;
- Monitors baseline of firmware for security risks across all supported hardware;
- Leads change control by reviewing changes for technical accuracy and risk analysis;
- Partners with external vendors on solution architecture and procurement;
- Provides leadership to identify, manage, and resolve risks in a team environment;
- Works independently with little supervision on day-to-day tasks, receiving general instructions on new assignments;
- Travels to project areas, business related events, and other Ritter Communications locations as required;
- Performs other duties as required.
Knowledge, Skills, and Abilities:
- Expert knowledge of firewalls, preferably Cisco (Meraki, ASA) and Palo Alto;
- Expert knowledge of DDOS platforms and how they apply to Service Providers, preferably Deepfield;
- Demonstrated knowledge of the SOC2, NIST, or ISO 27001 Cyber Security Framework and associated best practices;
- Expert knowledge of packet traces, Sflow/Cflow;
- Demonstrated knowledge of security best practices in multi-tenant environments;
- Demonstrated knowledge of risk management for infrastructure as well as CPE equipment;
- Excellent verbal and written communication skills to both technical and non-technical stakeholders;
- Adept at strategic thinking, time management, and problem-solving;
- Ability to travel for business requirements; must possess a valid Driver’s License with a satisfactory driving record.
Education and Experience:
BA or BS in information security, engineering, or related area or a minimum of 5 years in the service provider industry, with at least two of the preferred related certifications.
Preferred Certifications or equivalent:
- Certified Information Systems Security Professional (CISSP)
-
GIAC Security Essentials Certification (GSEC)
- Systems Security Certified Practitioner (SSCP)
- Certified Information Security Manager (CISM)
Experience in creating and maintaining project plans highly preferred. Experience in cyber security and related infrastructure technologies, cloud-based infrastructure, and software defined networks required.