Cyber Security Architect

At CF Industries, our mission is to provide clean energy to feed and fuel the world sustainably. Our employees are focused on safe and reliable operations, environmental stewardship, and disciplined capital and corporate management. By joining CF, you will be part of a team that brings their varied experiences, wide-ranging knowledge and diverse talents together to deliver important work and you'll be able to pursue complex, exciting opportunities that help you continue to grow and achieve your potential in different areas. You'll take pride in working for a company that lives its values and where you can be yourself at work, as part of an authentic team that encourages you to share your views and opinions. Our eight manufacturing complexes in the United States, Canada, and the United Kingdom, an unparalleled storage, transportation and distribution network in North America, and logistics capabilities enabling a global reach underpin our strategy to leverage our unique capabilities to accelerate the world's transition to clean energy.

Function:

Information Technology

Job Summary:

The Cyber Security Architect is responsible for designing, building, testing, and implementing security systems within CF's network. A Security Architect is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice security products. Guide, mentor and develop others, to be the face of the team.

Job Description:

Responsibilities

• Identify and communicate current and emerging security threats.

• Design logging, monitoring, and threat detection capabilities for both on-premises and cloud systems.

• Drive integration of security tools across the environment using common methods such as REST APIs, webhooks, event callbacks, and connection agents.

• Evaluate, test, recommend, develop, coordinate, and monitor information systems (IS) and cyber security policies, procedures, and systems, including access management for hardware and software.

• Ensure that IS and cyber security architecture/designs, plans, controls, processes, standards, policies, and procedures are aligned with IS standards and overall IS and cybersecurity.

• Identify security risks and exposures, determine the causes of security violations, and suggest procedures to halt future incidents and improve security.

• Implement network segmentation and monitoring in cloud environments, including network security groups, virtual networks and peerings, user defined routes, and private endpoints.

• Design security architecture elements to mitigate threats as they emerge.

• Create and recommend solutions that balance business requirements with cybersecurity requirements.

• Manage the Security Information and Event Management (SIEM) system, including analytic rule tuning, threat feed integrations, identity enrichment, and MITRE ATT&CK mappings.

• Actively participate in blue team / red team engagements, including incident response tabletop scenarios.

• Utilize common scripting languages (e.g. Python, PowerShell, bash) for automation tasks.

• Respond immediately to security-related incidents and provide thorough remedial solutions and analysis.

• Translate technical cybersecurity risks into business language for upper management.

• Lead and mentor security analysts on security best practices.

Contribution:

• Breadth of Scope: Scope is typically within the Information Technology or work team. May work across or interact /coordinate with multiple functions.

• Communications and Interpersonal Skills: Demonstrated ability to communicate complex and technical issues to diverse audiences, orally and in-writing, in an easily understood, authoritative, and actionable manner.

• Complexity: Applies technical and analytical thought processes to unique and novel challenges.

Attributes

• Education: Bachelor's degree in Computer Science, Cybersecurity, or its equivalent in a related field is typically preferred.

• Years of experience: 10+ Years of experience in a technical role in the areas of Cyber Security Incident Response may be preferred to complete all essential job functions.

• Other unique job relevant attributes: Strong foundational knowledge in information technology, including cloud services, hardware, networking, architecture, protocols, file systems, and Windows operating systems. Certified Information Systems Security Professional (CISSP).

The estimated base pay for the position is typically between $111,400 - $156,800

The actual base pay for the position may be influenced by factors such as education, training, skills, qualifications, competencies, years of experience, job-related knowledge, and scope of the role, and could be outside of the posted pay range.

In addition to base pay, an incentive program is available to all full-time employees, and a comprehensive benefits package including two medical plan options, a health savings plan with a company contribution and a match, dental and vision benefits, a well-being incentive program, 401(k) Plan which provides a potential of receiving between 10% and 13% of employer's contribution, life and disability insurance, paid time off programs and much more! Additionally, we offer several Flexible Work Arrangements to support a healthy work-life balance.

For more detailed information on the CF programs, please visit our Total Rewards website at: https://cftotalrewards.com/

The above statements are intended to describe the general nature and level of work being performed by person(s) assigned to this job. These statements are not intended to be an exhaustive list of all responsibilities, duties and skills required of personnel in this position.

FMLA: https://www.dol.gov/whd/regs/compliance/posters/fmlaen.pdf

Employee Polygraph Protection Act: https://www.dol.gov/whd/regs/compliance/posters/eppac.pdf

• Employees in Canada can learn more about their rights by viewing the "Canadian Human Rights Act".

If you need any assistance seeking a job opportunity at CF Industries, or if you need reasonable accommodation with the application process, please call 847-405-2400 or contact us at talentacquisition@cfindustries.com

FMLA:

https://www.dol.gov/whd/regs/compliance/posters/fmlaen.pdf

Employee Polygraph Protection Act

https://www.dol.gov/whd/regs/compliance/posters/eppac.pdf

• Employees in Canada can learn more about their rights by viewing the "Canadian Human Rights Act".

If you need any assistance seeking a job opportunity at CF Industries, or if you need reasonable accommodation with the application process, please call 847-405-2400 or contact us at talentacquisition@cfindustries.com.

JOIN OUR TALENT NETWORK