Cybersecurity Architect

M-F, 8a-5p

Hanover, NH

The Cybersecurity Architect designs, integrates, and advances Dartmouth's cybersecurity technology portfolio across endpoint, network, identity, cloud, data, and emerging AI domains. Reporting to the Chief Information Security Officer, this role contributes to the evolution of Dartmouth's cybersecurity reference architecture by supporting security tooling, integration patterns, detection and prevention capabilities, and platform interoperability across the institution. The role also supports the secure adoption of AI-enabled technologies and evaluates opportunities to incorporate AI capabilities into cybersecurity operations and workflows.

The Architect partners closely with peer domain architects, engineers, and technology leaders to ensure security capabilities are effectively integrated into Dartmouth's broader technology environment.

Operating effectively in a decentralized environment with distributed IT functions and semi-autonomous schools and research units is central to success in this role.

This is a hands-on technical role that combines cybersecurity architecture, engineering collaboration, and security platform integration responsibilities.

Cybersecurity Architect
Information, Technology and Consulting | Dartmouth College | Hanover, NH

Dartmouth College seeks a versatile Cybersecurity Architect to design, integrate, and mature the institution's cybersecurity technology portfolio across endpoint, network, identity, cloud, data, and AI domains. Reporting to the Chief Information Security Officer, this role owns the technical reference architecture for security capabilities, with AI treated as a first-class domain alongside the rest of the stack. The Architect partners closely with peer domain architects to ensure security technologies are deployed and integrated as part of Dartmouth's broader architectural fabric. This is a hands-on architect role operating as a technical leader and individual contributor in a decentralized institutional environment.

What You'll Do

* Own the security reference architecture across the technology portfolio and define integration patterns that ensure technical controls operate as a coherent ecosystem.

* Partner with peer domain architects and leaders on integrated architecture designs and joint deployment decisions across the institution.

* Lead technical deployment, integration, and tuning of capabilities across the portfolio.

* Ensure capabilities and designs are effective by actively threat modeling and pen-testing new technologies using applicable frameworks and translating results into technical designs that meet Dartmouth's regulatory obligations and improve the security posture.

* Mentor engineers and analysts; partner with the CISO on governance and risk; and represent security in enterprise architecture reviews and cross-institutional working groups.

What You Bring

* Minimum eight years of progressive cybersecurity engineering and architecture experience, including at least three in a senior engineering or architect role.

* Demonstrated experience operating in a decentralized environment, including distributed IT functions, autonomous schools or business units, and federated governance.

* Hands-on expertise with at least four of the following: SIEM, endpoint detection and response, enterprise identity platforms, cloud productivity security suites, next-generation firewalls, endpoint management, and cloud infrastructure security.

* Deep working knowledge of NIST CSF 2.0, CIS Controls v8, and at least one of NIST SP 800-53 / SP 800-171, with demonstrated detection engineering and security automation experience mapped to MITRE ATT&CK.

* Working knowledge of AI/ML security frameworks ( NIST AI RMF, OWASP LLM Top 10, MITRE ATLAS) and practical experience securing or integrating enterprise AI services.

* Strong written and verbal communication skills and a bachelor's degree in Computer Science, Information Security, or a related field, or equivalent professional experience.

Preferred

* Higher education, academic medical, or research-intensive experience, including familiarity with faculty governance and semi-autonomous research computing.

* Hands-on experience in HIPAA, CMMC Level 2 / NIST 800-171, ITAR/ EAR, or PCI DSS environments.

* Experience deploying enterprise generative AI at production scale or integrating LLM capabilities into SOC workflows.

* Industry certifications such as CISSP- ISSAP, GIAC GDSA, GCSA, or GCDA, or cloud security specialty certifications.

Hybrid schedule based in Hanover, NH. Occasional travel to affiliated locations. Participates in an on-call rotation for major incidents. Reports to the Chief Information Security Officer.

Dartmouth College is an equal opportunity employer under federal law. We prohibit discrimination on the basis of race, color, religion, sex, age, national origin, sexual orientation, gender identity or expression, disability, veteran status, marital status, or any other legally protected status. Applications are welcome from all.

Employment in this position is contingent upon consent to and successful completion of a pre-employment background check, which may include a criminal background check, reference checks, verification of work history, conduct review, and verification of any required academic credentials, licenses, and/or certifications, with results acceptable to Dartmouth College. A criminal conviction will not automatically disqualify an applicant from employment. Background check information will be used in a confidential, non-discriminatory manner consistent with state and federal law.

Dartmouth College has a Tobacco-Free Policy. Smoking and the use of tobacco-based products (including smokeless tobacco) are prohibited in all facilities, grounds, vehicles or other areas owned, operated or occupied by Dartmouth College with no exceptions. For details, please see our policy. https://policies.dartmouth.edu/policy/tobacco-free-policy