About Redesign Group

The Redesign Group is a global technology and cybersecurity Solution Provider leveraging design thinking, interdependent subject matter expertise, and emerging technology solutions to help organizations achieve meaningful transformation. Our globally diverse team members, partnerships with strategic technology manufacturers, and cybersecurity services position us to be a business partner that’s ready for what’s next.

We live by our core values of operating in the service of others, being problem solvers, and focusing on long term partnerships. You’ll excel at Redesign if you thrive in a rewarding environment that moves quickly, challenges you to grow and fosters collaboration. We seek candidates with a hands-on customer-first approach, robust interpersonal and communication skills, strong work ethic and excellent time management. While teamwork is expected, the ability to work independently in a fast-paced environment is crucial.

Job Description

The Redesign Group is seeking a highly technical Security Solutions Architect with deep hands-on implementation experience across enterprise security domains. This role supports complex pre-sales engagements by leading technical architecture, validating security design decisions, and translating operational realities into scalable, defensible security strategies.

This position is designed for a practitioner who has built, deployed, tuned, and operated security technologies in production environments — not just designed them on paper. You will work closely with Sales, Engineering, and client security teams to architect integrated, defense-in-depth solutions across hybrid infrastructure, cloud, application, and identity environments.

Technical Responsibilities
Security Architecture & Design

• Design layered, defense-in-depth architectures across hybrid, multi-cloud, and on-prem environments
• Lead technical discovery and perform detailed security posture assessments
• Develop phased remediation and modernization roadmaps aligned to enterprise risk
• Architect Zero Trust-aligned frameworks spanning identity, endpoint, network, and cloud

Application & DevSecOps Security

• Integrate SAST, DAST, SCA, and RASP into CI/CD pipelines
• Architect secure SDLC frameworks and DevSecOps controls
• Design WAF and API protection strategies
• Advise on container security, image scanning, and Kubernetes hardening

Cloud & Infrastructure Security

• Architect CSPM, CASB, and cloud workload protection solutions
• Design secure hybrid connectivity models (SASE, NGFW, segmentation, NAC)
• Implement Infrastructure-as-Code (IaC) security controls
• Secure containerized and serverless environments
• Align architecture with Azure, AWS, and multi-cloud security best practices

Identity & Access Management

• Architect enterprise IAM, IGA, PAM, and CIAM solutions
• Design conditional access, MFA, and identity protection strategies
• Implement least-privilege and role-based access control models
• Integrate identity telemetry into broader detection and response ecosystems

Endpoint, Threat Detection & SOC Architecture

• Design EPP, EDR/XDR, and MDR integrations
• Architect SIEM and SOAR platforms for centralized logging and automated response
• Develop detection engineering strategies and use-case tuning
• Integrate threat intelligence platforms (TIPs) into SOC workflows
• Support incident response program development and playbook design

Data & Email Security

• Implement enterprise DLP and data classification programs
• Design encryption, key management, and secure collaboration controls
• Architect phishing protection, SEG, DMARC enforcement, and anomaly detection

Governance, Risk & Compliance

• Align architectures to frameworks such as NIST, ISO, CIS, and SOC 2
• Conduct vulnerability management program design and risk prioritization
• Support regulatory requirements across healthcare, financial, and global environments
• Implement third-party risk management (TPRM) controls

Key Vendor & Platform Experience (Hands-On Preferred)
Deep experience implementing, tuning, and operating one or more of the following ecosystems:

• CrowdStrike, SentinelOne
• Microsoft Security (Defender, Sentinel, Entra)
• Rapid7, Tenable, Qualys
• Palo Alto Networks
• Arctic Wolf
• Zscaler, Netskope
• Proofpoint, Abnormal
• KnowBe4
• Darktrace
• Okta

Required Experience

• 10+ years of hands-on cybersecurity engineering and architecture experience
• Experience integrating multiple vendor platforms into a unified detection, prevention, and response architecture is strongly preferred.
• Proven experience designing and operating enterprise-scale security environments
• Strong understanding of network protocols, identity systems, cloud architectures, and threat models
• Experience in detection engineering, log analysis, and incident response workflows
• Background supporting regulated enterprise environments
• Ability to communicate technical trade-offs clearly to both technical and executive stakeholders

Preferred Certifications

• CISSP
• CISM
• CCSP
• GIAC (GCIA, GCIH, GPEN, etc.)
• CEH
• Security+
• Vendor certifications (Microsoft Security, Palo Alto, Okta, CrowdStrike, etc.)

Benefits

We offer a comprehensive benefits package which may include:

• Medical Insurance
• Dental Insurance
• Vision Insurance
• 401(k) plan with a 4% employer match (annual dollar cap applied)
• Flexible time off plan
• 15 paid holidays
• Sick leave (amount varies by state requirements and is at least the minimum required by any state)
• Short-term and long-term disability
• Life insurance
• Paid parental leave

We’re an Equal Opportunity and Affirmative Action Employer and welcome applicants from all backgrounds. We consider qualified candidates without regard to any legally protected status. This role is subject to applicable employment laws based on work location. In compliance with pay transparency laws, the compensation range for this role is included, with final pay based on experience, skills, and location. We participate in E-Verify to confirm employment eligibility and are happy to provide reasonable accommodations throughout the hiring process—just let us know how we can help.