Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
Für Unternehmen Auf einen Blick
- Aufgaben: Lead the design and implementation of Zero Trust security architecture.
- Arbeitgeber: Join Cambridge International Systems, a global community focused on commitment, integrity, and perseverance.
- Mitarbeitervorteile: Enjoy perks like tax exemption, relocation reimbursement, housing allowance, and generous tuition assistance.
- Warum dieser Job: Be part of a team tackling complex security challenges in a collaborative environment.
- Gewünschte Qualifikationen: Must have a TS/SCI clearance and extensive experience with Microsoft Azure and security protocols.
- Andere Informationen: Opportunities for travel and a comprehensive benefits package await you!
Das voraussichtliche Gehalt liegt zwischen 54000 - 84000 € pro Jahr.
When you join the Cambridge team, you are part of a skilled and talented global community that is united by a set of core values: commitment, integrity, and perseverance. Join our team and help us confront today’s most threatening and complex obstacles!
Cambridge International Systems, Inc. has a full-time Zero Trust Architect opportunity available based in Moehringen, Germany.
Qualified candidates for this job must possess a current DoD TS/SCI security clearance and meet TESA accreditation requirements. TESA Certification allows employees to be tax exempt for both Germany and the US, in addition to other great perks.
Employees may be eligible for relocation reimbursement, housing allowance, COLA, and school reimbursement for dependents.
ROLE RESPONSIBILITIES
- Zero Trust Architecture Design:
- Lead the design and implementation of a Zero Trust security architecture for the organization.
- Develop and implement strategies to ensure the least privilege access, micro-segmentation, and continuous monitoring of network traffic.
- Collaborate with cross-functional teams to integrate Zero Trust principles into existing and new systems.
- Identity and Access Management:
- Implement strong authentication and authorization mechanisms to verify user identities and ensure secure access.
- Design and implement role-based access controls (RBAC) and implement identity and access management (IAM) solutions.
- Monitor and audit user access to identify and mitigate potential security risks.
- Network Security:
- Implement network segmentation and micro-segmentation strategies to limit lateral movement.
- Design and deploy secure communication channels, including encryption and VPN solutions.
- Collaborate with network engineers to ensure secure configuration and monitoring of network devices.
- Endpoint Security:
- Design and implement endpoint protection strategies, including device posture assessment and continuous monitoring.
- Implement application control and device authentication measures.
- Work with IT teams to ensure security configurations on endpoints align with Zero Trust principles.
- Security Monitoring and Incident Response:
- Implement continuous monitoring solutions to detect and respond to security incidents.
- Develop and document incident response plans for Zero Trust environments.
- Conduct regular security assessments and penetration testing.
Required QUALIFICATIONS
- BA/BS + 5 years recent specialized or AA/AS +7 years recent specialized or a major cert + 9 years recent specialized or 11 years of recent specialized experience.
- Extensive experience supporting Microsoft Azure and Microsoft 365.
- Experience in systems infrastructure design, support, and administration.
- Experience working with Microsoft Azure and Microsoft 365 in a hybrid environment.
- Azure AD, storage, and compute including Application Proxy (NDES), Storage Account, Virtual Machines, Virtual Desktop, Backup, Automation, and Functions.
- Azure identity management including SSO (SAML), OAuth, MFA, RBAC, PIM, conditional access, monitoring/alerting, device registration, identity protection, and hybrid identity management/AD connect.
- Azure networking including ExpressRoute, VNet, Virtual WAN, VPN, NSG, Load Balancer, BGP, routing, and firewall concepts (Palo Alto, etc.).
- Experience collaborating with technical teams of diverse IT-related skill sets.
- IAT-III Level Certification (CISSP, CASP+, CISM, etc.).
- Microsoft Certified Azure Administrator Associate or Developer Associate.
- Must possess an active TS/SCI security clearance.
- Must be proficient in using different technologies such as computers and other tools and systems pertinent to the position.
DESIRED QUALIFICATIONS
- Ansible and Infrastructure as Code programming skills.
- Advanced automated script design, coding, debugging, and maintenance skills (using bash, python, etc.).
- Experience in CI/CD toolsets (e.g., Terraform, Jenkins, GitLab, etc.).
- Experience with Containerization (Docker) and Container Orchestration (Kubernetes).
- Azure Solutions Architect Expert Certification.
TRAVEL REQUIREMENTS
- Ability to travel up to 10%. In some occasions, overnight travel may be required.
- Active Passport in support of OCONUS travel and/or living requirements.
PHYSICAL ENVIRONMENT AND WORKING CONDITIONS
- Cambridge International Systems complies with Temporary Duty Station (TDY)/Outside Continental United States (OCONUS) vaccination requirements.
- Must be able to work in an office environment, sitting at a desk, looking at a computer for most of the workday.
- Work is physically comfortable; the employee has discretion about sitting, walking, standing, etc.
- May be required to travel short distances to offices/conference rooms and buildings on site.
BACKGROUND CHECKS
Please note that any offer of employment is contingent upon a background investigation. In connection with working on certain federal contracts, a drug screen may also be required.
BENEFITS AND PERKS
Cambridge International Systems is committed to investing in our employees and their future by providing them with competitive compensation, career development opportunities, comfortable working conditions, and a comprehensive benefits package, some of which are listed below:
- Medical, dental, vision, Life/AD&D/STD/LTD insurance.
- 401(k) matching and immediate vesting.
- Paid time off and holidays.
- Generous tuition & training assistance program.
- Relocation assistance.
- Sign-on bonuses.
- Referral bonuses.
- Performance-based bonuses.
- Community involvement & outreach.
- Wellness program.
- Employee Assistance Program (EAP).
- Tickets at Work.
If you know someone who may be interested, please share this posting. We are a growing team and there may be more opportunities like this one here at Cambridge International Systems! Depending on the recruiting difficulty of the position and other factors, successful referrals resulting in a hire may qualify for a referral bonus. Both employees and non-employees are eligible! Ask the Recruiter for more info.
MORE ABOUT US
At Cambridge, we recognize innovation and agility grow through diverse collaboration. Our team is comprised of unique individuals, and it is our policy to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations.
If you are a qualified individual with a disability or a disabled veteran requiring assistance with the application process, please visit for information on how to request assistance.
#J-18808-Ljbffr
Zero Trust Architect Arbeitgeber: Cbridgeinc
Kontaktperson:
Cbridgeinc HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Zero Trust Architect
✨Tip Number 1
Familiarize yourself with Zero Trust principles and be prepared to discuss how you've implemented them in past roles. Highlight specific examples of micro-segmentation or least privilege access strategies you've designed.
✨Tip Number 2
Since collaboration is key in this role, think about how you can demonstrate your experience working with cross-functional teams. Prepare anecdotes that showcase your ability to integrate security measures across different departments.
✨Tip Number 3
Brush up on your knowledge of Microsoft Azure and Microsoft 365, especially in a hybrid environment. Be ready to discuss specific tools and technologies you've used, such as Azure AD, RBAC, and VPN solutions.
✨Tip Number 4
Given the importance of security monitoring and incident response, prepare to talk about any relevant experiences you have in developing incident response plans or conducting security assessments. This will show your proactive approach to security.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Zero Trust Architect
Tipps für deine Bewerbung 🫡
Understand the Role: Make sure to thoroughly read the job description for the Zero Trust Architect position. Highlight key responsibilities and required qualifications that align with your experience.
Tailor Your CV: Customize your CV to reflect relevant experience in Zero Trust architecture, identity and access management, and network security. Use specific examples from your past work that demonstrate your expertise in these areas.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also expresses your passion for cybersecurity and how you can contribute to Cambridge International Systems' mission. Mention your understanding of their core values: commitment, integrity, and perseverance.
Highlight Certifications: Clearly list any relevant certifications such as IAT-III Level Certification or Microsoft Certified Azure Administrator Associate. These credentials are crucial for this role and should be prominently featured in your application.
Wie du dich auf ein Vorstellungsgespräch bei Cbridgeinc vorbereitest
✨Understand Zero Trust Principles
Make sure you have a solid grasp of Zero Trust architecture concepts. Be prepared to discuss how you would implement least privilege access, micro-segmentation, and continuous monitoring in a real-world scenario.
✨Showcase Your Technical Skills
Highlight your experience with Microsoft Azure and Microsoft 365, especially in hybrid environments. Be ready to provide examples of how you've used Azure AD, RBAC, and other relevant technologies in past projects.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical security challenges. Practice articulating your thought process and the steps you would take to address issues related to identity and access management or network security.
✨Demonstrate Collaboration Experience
Since the role involves working with cross-functional teams, be prepared to discuss your experience collaborating with diverse IT teams. Share specific examples of how you’ve successfully integrated security measures into existing systems.
