Senior Security Architect

Company Summary
EchoStar is reimagining the future of connectivity. Our business reach spans satellite television service, live-streaming and on-demand programming, smart home installation services, mobile plans and products.
Today, our brands include Boost Mobile, DISH TV, Gen Mobile, Hughes and Sling TV.
Department Summary
Our Technology teams challenge the status quo and reimagine capabilities across industries. Whether through research and development, technology innovation or solution engineering, our people play vital roles in connecting consumers with the products and platforms of tomorrow.
Job Duties and Responsibilities
Candidates must be willing to participate in at least one in-person interview, which may include a live whiteboarding or technical assessment session.
EchoStar is seeking a talented and innovative Security Architect to lead the design, development, and implementation of its Identity Management (IAM) and Zero Trust Architecture. The role will ensure robust security across EchoStar's digital ecosystem, focusing on secure authentication for employees and supply chain vendors, as well as implementing network- and user-based segmentation controls. The Security Architect will collaborate across internal teams and external partners to drive security innovation, ensure the effectiveness of security controls, and propel EchoStar's security program forward.
Key Responsibilities:

• Consumer Identity and Access Management (IAM) Architecture: Design, implement, and manage a secure IAM framework that delivers industry-leading authentication capabilities for EchoStar employees and supply chain vendors; ensure workflows are secure, scalable, and user-friendly, reducing authentication friction without compromising security
• Zero Trust Architecture: Lead the design and deployment of EchoStar's Zero Trust architecture, focusing on network-based and user-based segmentation controls; ensure proper user, system, and data separation to protect against unauthorized access and lateral movement within the network
• Security Control Effectiveness: Continuously measure and evaluate the effectiveness of security controls in production environments; use data-driven insights to ensure the architecture operates as designed, addressing any gaps or deficiencies proactively
• Security Architecture Support: Provide Security Architecture support to align with and improve other security control frameworks within EchoStar; help reduce constraints and roadblocks in security projects and initiatives, ensuring smooth progress of the security program
• Innovation in Security Control Stack: Drive innovation within EchoStar's security control stack to enhance overall security posture; leverage emerging technologies and advanced security practices to ensure EchoStar remains at the forefront of cybersecurity, building the most secure platform possible
• Threat Landscape Research: Conduct ongoing research into emerging cybersecurity threats and trends, particularly those related to IAM and Zero Trust architectures; implement proactive solutions to protect EchoStar's systems, employees, and vendors from potential threats
• Cross-Organizational Collaboration: Collaborate with various internal teams, including IT, compliance, and business units, to align security initiatives with business objectives; build strong relationships with external industry partners to adopt best practices and stay ahead of evolving security challenges
• Security Initiatives Intake: Lead the intake and execution of new security initiatives; develop clear security requirements, participate in project reviews, and ensure security controls are seamlessly integrated into new technology deployments

Skills, Experience and Requirements
Education and Experience:

• Bachelor's degree in Computer Science or Information Technology, related discipline, or commensurate industry experience
• 10+ years of related experience

Skills and Qualifications:

• Strong understanding of cyber security principles, concepts, and technologies
• Knowledge of network protocols, operating systems, and security frameworks
• Experience with vulnerability assessment and penetration testing tools
• Excellent analytical and problem-solving skills, with the ability to think critically and make informed decisions
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams
• Self-motivated and eager to learn, with a strong passion for cyber security
• Relevant certifications such as CompTIA Security+, Certified Ethical Hacker (CEH), or Certified Information Systems Security Professional (CISSP) are a plus
• Experience in designing and deploying security architectures for large-scale, global organizations
• Familiarity with cloud security, especially around IAM and Zero Trust models in hybrid and multi-cloud environments
• Prior experience in securing supply chain and vendor management processes

Visa sponsorship not available for this role
#LI-JZ2
Salary Ranges
Compensation: $127,050.00/Year - $181,500.00/Year
Benefits
We offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan; all benefits can be viewed here: DISH Benefits .
The base pay range shown is a guideline. Individual total compensation will vary based on factors such as qualifications, skill level, and competencies; compensation is based on the role's location and is subject to change based on work location.
Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check. Our company is committed to fostering an inclusive and equitable workplace where every individual has the opportunity to succeed. We are dedicated to providing individuals with criminal or arrest records a fair chance of employment in accordance with local, state, and federal laws.
The posting will be active for a minimum of 3 days. The active posting will continue to extend by 3 days until the position is filled.
We pride ourselves on developing and promoting talent as an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. EchoStar will accommodate the sincerely held religious beliefs of employees if such accommodations are not undue hardships and are otherwise within the bounds of applicable law. All qualified applicants with arrest or conviction records will be considered for employment in accordance with local, state, and federal law. You may redact any information that identifies age, date of birth, or dates of school/graduation from your application documents before submission and throughout our application process.
EchoStar will provide reasonable accommodation to otherwise qualified job applicants and employees with known physical or mental disabilities, unless doing so poses an undue hardship on the Company, poses a direct threat of substantial harm to others, or is otherwise not required by law. EchoStar has a more detailed Accommodation Policy that applies to employees. EchoStar endeavors to make echostar.com and jobs.echostar.com accessible to users. Please contact [email protected] if you would like to discuss the accessibility of our website or need assistance completing the application process. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.
Click the links to access the following statements: EEO Policy Statement , Pay Transparency , EEOC Know Your Rights ( English / Spanish )