Philly Shipyard Inc
Network Security Architect-Cybersecurity
Philly Shipyard Inc, Phila, Pennsylvania, United States, 19117
ESSENTIAL FUNCTIONS:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Ensure that all HPSI safety procedures, rules and regulations are followed and met. Design and implement secure network architectures, including firewalls, VPNs, IDS/IPS, segmentation, and zero-trust principles. Develop and maintain enterprise-level security architecture documentation and standards. Conduct risk assessments and threat modeling for new and existing network solutions. Evaluate, recommend, and implement network security tools, platforms, and configurations (e.g., next-gen firewalls, NDR, NAC). Collaborate with IT and cybersecurity teams to secure LAN, WAN, cloud, and hybrid environments. Provide technical leadership in the design and implementation of security controls for on-premises and cloud networks (AWS, Azure, GCP). Monitor industry trends and emerging threats to ensure proactive defense strategies. Lead the response process for network-related breaches or vulnerabilities. Ensure compliance with relevant frameworks and standards (e.g., NIST, ISO 27001, CIS Controls, CMMC, PCI-DSS). Guide the secure integration of third-party vendors, applications, and systems into the network. Participate in audits and contribute to regulatory and customer security assessments. Mentor junior team members and provide architectural guidance to project teams. COMPETENCIES:
Strong analytical and problem-solving skills. Excellent verbal and written communication abilities. Ability to communicate complex technical concepts to non-technical stakeholders. Strong project management and documentation skills. SUPERVISORY RESPONSIBILITY:
This position has no supervisory responsibilities.
EDUCATION AND EXPERIENCE:
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (Master's preferred). 8+ years of IT and cybersecurity experience , with at least
3 years focused on network security architecture. In-depth knowledge of enterprise network technologies: routers, switches, firewalls (e.g., Palo Alto, Fortinet, Cisco), proxies, VPNs, and NAC. Hands-on experience designing and securing hybrid cloud architectures (AWS, Azure, GCP). Strong understanding of TCP/IP, DNS, SSL/TLS, VPN, VLANs, and SD-WAN technologies. Experience with network monitoring tools (e.g., Splunk, Wireshark, SolarWinds, NetFlow). Familiarity with frameworks such as NIST CSF, CIS Top 18, and MITRE ATT&CK. Proficiency in scripting and automation (Python, PowerShell, etc.) is a plus. CISSP
- Certified Information Systems Security Professional CCSP
- Certified Cloud Security Professional CISA / CISM / CEH / GIAC Cisco CCNP Security / Palo Alto PCNSE / Fortinet NSE
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. A range of motion sufficient to perform general lifting, carrying, bending, stooping, climbing, working at heights, extended walking or standing, etc. is required. Employment in this position is contingent upon passing the medical examination. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
WORK ENVIRONMENT:
Duties performed in an office area environment within a manufacturing facility. Responsibilities will require routine fieldwork in the shipyard's fabrication shops, dry docks, and on-board vessels as part of the above activities. These heavy industrial settings may include; noise, heat, cold, vibration, dust, fume, and smoke, and may involve exposure to inclement weather conditions.
*Hanwha Philly Shipyard is a TOBACCO FREE facility.
POSITION TYPE/EXPECTED HOURS OF WORK:
This is an on-site, full-time, safety-sensitive position. Standard days and hours of work vary by department, days and hours determined by department schedules.
OTHER DUTIES:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time or without notice.
Hanwha Philly Shipyard is committed to equal opportunity for all applicants. The recruitment, selection, employment, and training of employees during employment, shall be without discrimination because of race, color, religion, national origin, gender, or age-except that the applicant must meet the minimum age requirement. Hanwha Philly Shipyard does not, and will not, discriminate because of the disability of such individuals.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Ensure that all HPSI safety procedures, rules and regulations are followed and met. Design and implement secure network architectures, including firewalls, VPNs, IDS/IPS, segmentation, and zero-trust principles. Develop and maintain enterprise-level security architecture documentation and standards. Conduct risk assessments and threat modeling for new and existing network solutions. Evaluate, recommend, and implement network security tools, platforms, and configurations (e.g., next-gen firewalls, NDR, NAC). Collaborate with IT and cybersecurity teams to secure LAN, WAN, cloud, and hybrid environments. Provide technical leadership in the design and implementation of security controls for on-premises and cloud networks (AWS, Azure, GCP). Monitor industry trends and emerging threats to ensure proactive defense strategies. Lead the response process for network-related breaches or vulnerabilities. Ensure compliance with relevant frameworks and standards (e.g., NIST, ISO 27001, CIS Controls, CMMC, PCI-DSS). Guide the secure integration of third-party vendors, applications, and systems into the network. Participate in audits and contribute to regulatory and customer security assessments. Mentor junior team members and provide architectural guidance to project teams. COMPETENCIES:
Strong analytical and problem-solving skills. Excellent verbal and written communication abilities. Ability to communicate complex technical concepts to non-technical stakeholders. Strong project management and documentation skills. SUPERVISORY RESPONSIBILITY:
This position has no supervisory responsibilities.
EDUCATION AND EXPERIENCE:
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (Master's preferred). 8+ years of IT and cybersecurity experience , with at least
3 years focused on network security architecture. In-depth knowledge of enterprise network technologies: routers, switches, firewalls (e.g., Palo Alto, Fortinet, Cisco), proxies, VPNs, and NAC. Hands-on experience designing and securing hybrid cloud architectures (AWS, Azure, GCP). Strong understanding of TCP/IP, DNS, SSL/TLS, VPN, VLANs, and SD-WAN technologies. Experience with network monitoring tools (e.g., Splunk, Wireshark, SolarWinds, NetFlow). Familiarity with frameworks such as NIST CSF, CIS Top 18, and MITRE ATT&CK. Proficiency in scripting and automation (Python, PowerShell, etc.) is a plus. CISSP
- Certified Information Systems Security Professional CCSP
- Certified Cloud Security Professional CISA / CISM / CEH / GIAC Cisco CCNP Security / Palo Alto PCNSE / Fortinet NSE
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. A range of motion sufficient to perform general lifting, carrying, bending, stooping, climbing, working at heights, extended walking or standing, etc. is required. Employment in this position is contingent upon passing the medical examination. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
WORK ENVIRONMENT:
Duties performed in an office area environment within a manufacturing facility. Responsibilities will require routine fieldwork in the shipyard's fabrication shops, dry docks, and on-board vessels as part of the above activities. These heavy industrial settings may include; noise, heat, cold, vibration, dust, fume, and smoke, and may involve exposure to inclement weather conditions.
*Hanwha Philly Shipyard is a TOBACCO FREE facility.
POSITION TYPE/EXPECTED HOURS OF WORK:
This is an on-site, full-time, safety-sensitive position. Standard days and hours of work vary by department, days and hours determined by department schedules.
OTHER DUTIES:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time or without notice.
Hanwha Philly Shipyard is committed to equal opportunity for all applicants. The recruitment, selection, employment, and training of employees during employment, shall be without discrimination because of race, color, religion, national origin, gender, or age-except that the applicant must meet the minimum age requirement. Hanwha Philly Shipyard does not, and will not, discriminate because of the disability of such individuals.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.