Information Security Architect

About ClearCaptions, LLC

Since our founding in 2011, ClearCaptions, LLC has been dedicated to improving the lives of seniors and their caregivers. We are deeply passionate about communication, striving to be the leading provider of services and solutions that empower seniors to live more meaningful and independent lives. We recognize the vital role connection plays, especially for individuals who are hard-of-hearing. Through advanced automatic speech recognition, human captioning, and innovative product development, we deliver user-friendly, cutting-edge technology to our primarily senior customer base. Our near real-time phone captioning technology allows individuals with hearing loss to see what callers are saying, helping them reconnect with the world.

ClearCaptions is a Federal Communications Commission (FCC)-certified telephone captioning provider, upholding the highest industry standards of privacy, security, and professionalism. We are committed to maintaining the trust and confidence of our customers and continually aim to surpass their expectations.

For more information about our services, please visit clearcaptions.com.

We seek versatile individuals who thrive on variety and challenge, are excited by fast-paced environments, and are innate problem solvers eager to grow in a flexible, collaborative culture. Ideal candidates take initiative, push boundaries, are motivated to innovate, possess a growth mindset, and align with our core values: Integrity, Accountability, Collaboration, Service, and Quality.

Position Summary: Information Security Architect

The Information Security Architect will lead the design and implementation of enterprise-wide security architecture across diverse domains, including corporate IT, telecom infrastructure, mobile networks, and IoT ecosystems. This pivotal role ensures that all technology assets, spanning cloud, hybrid, and on-prem environments, are protected with a defense-in-depth approach that adheres to industry best practices and regulatory mandates such as FCC and HIPAA.

Working closely with Security Operations (SecOps), Network Engineering, Cloud, and AI Innovation teams, the Information Security Architect will design resilient, compliant, and scalable security frameworks. A significant aspect of this role involves defining AI security guardrails, with a particular focus on Agentic AI systems, data privacy, and model governance. This is a 100% Remote position, reporting to the Sr. Director of Enterprise Architecture.

What You Will Do:

Security Architecture & Design

• Develop and maintain the enterprise security architecture framework for IT, telecom, mobile, and IoT platforms.
• Lead and participate in enterprise-wide cybersecurity initiatives, ensuring alignment with industry frameworks like NIST, ISO, and CIS.
• Define zero-trust architecture patterns for multi-cloud (AWS, MS Azure) and hybrid environments.
• Evaluate and recommend new security technologies and processes to counter evolving threats.
• Provide clear direction for the configuration, monitoring, and hardening of Cisco security infrastructure, including firewalls, VPNs, and intrusion prevention systems.
• Define and oversee policies and guidelines for vulnerability management programs, utilizing tools such as Rapid7.
• Embed security-by-design principles into all technology initiatives, including product development and infrastructure modernization.
• Partner with Enterprise Architecture and Tech Ops teams to align security blueprints with overall technical standards and business capabilities.

AI and Data Security

• Define AI/ML and Agentic AI security guardrails, encompassing model access, prompt sanitization, model drift monitoring, and data provenance controls.
• Develop governance policies for the secure use of AI APIs, LLMs, and autonomous agent frameworks.
• Ensure AI data pipelines comply with FCC, HIPAA, and privacy regulations.
• Collaborate with data teams to ensure consistent application of data protection, encryption, and masking across AI workloads.

Telecom, Mobile & IoT Security

• Architect security for voice and telecom networks, including signaling protocols (SIP, RTP) and device provisioning systems.
• Establish secure configurations and firmware lifecycle management for mobile devices and IoT endpoints.
• Oversee encryption, authentication, and network segmentation within IoT and edge environments.
• Ensure telecom infrastructure complies with FCC, CPNI, and CALEA requirements.

Governance, Risk & Compliance

• Maintain alignment with FCC, HIPAA, NIST 800-53, ISO 27001, and CIS standards.
• Support security risk assessments, audits, and remediation planning.
• Define key security metrics, controls, and architecture review processes.
• Collaborate with Legal, Compliance, and Audit functions to ensure continuous regulatory readiness.

Collaboration with SecOps

• Work closely with the Security Operations Center (SOC) on threat modeling, detection strategy, and incident response architecture.
• Contribute to threat intelligence integration and SIEM architecture design.
• Support vulnerability management and secure configuration baselines across environments.

Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field; Master’s preferred.
• 7+ years of progressive experience in Information Security Architecture & Operations roles.
• Certifications such as CISSP, CCSP, SABSA, CISM, TOGAF, AI Security Specialist.
• Deep understanding of network, cloud, and application security across telecom, IT, and IoT ecosystems.
• Experience designing and securing AI/ML platforms, including governance of LLMs and agentic AI tools.
• Proven experience with regulatory frameworks (FCC, HIPAA, NIST, ISO 27001).
• Hands-on experience with cloud-native security (AWS, Azure, GCP) and DevSecOps tooling.
• Experience with endpoint detection and response (EDR) platforms, ideally Crowdstrike.
• Hands-on expertise with vulnerability management and SIEM platforms, including Rapid7.
• Strong understanding of network security, including Cisco firewalls, VPNs, and intrusion prevention.

Key skills/competency

• Information Security Architecture
• Cloud Security (AWS, Azure)
• AI/ML Security Governance
• Telecom Network Security
• IoT Security
• Regulatory Compliance (FCC, HIPAA, NIST, ISO 27001)
• Zero-Trust Architecture
• Vulnerability Management (Rapid7)
• SIEM Architecture
• DevSecOps