Security Architect, Cybersecurity, IT/OT Modernization

West Monroe is seeking a Security Architect to join our Cybersecurity & Enterprise Technology practice, with a primary focus on Energy & Utilities. This role sits at the intersection of cybersecurity, IT/OT integration, enterprise modernization, and emerging AI-enabled security capabilities. 

You will serve as a trusted advisor to utility clients, leading the design and transformation of secure architectures across operational technology (OT), enterprise IT, and evolving AI-enabled environments. While Energy & Utilities will be your primary focus, you will also have opportunities to support clients across other highly regulated industries, including Financial Services and Healthcare. 

What You’ll Do 

Architect Secure IT/OT & Enterprise Environments 

• Design secure, scalable architectures across converged IT and OT environments 
• Secure integration of operational systems such as SCADA, EMS, ADMS, DERMS, and other industrial platforms with enterprise IT systems (ERP, CRM, analytics, cloud platforms) 
• Develop security reference architectures supporting IT/OT convergence and infrastructure modernization 
• Embed Zero Trust principles, segmentation, identity controls, and monitoring into modernized environments 

Lead Enterprise Cybersecurity Tooling Strategy 

• Evaluate, select, design, and implement enterprise cybersecurity solutions across: 
• Identity & Access Management (IAM) and privileged access 
• Network security and micro-segmentation 
• Endpoint detection & response (EDR/XDR) 
• SIEM and SOAR platforms 
• OT monitoring platforms (e.g., Dragos and other ICS security solutions) 
• Data protection, DLP, and cloud security services 
• Develop integrated tooling roadmaps aligned to business risk, regulatory requirements, and operational resilience 
• Integrate OT and enterprise telemetry into unified SOC and monitoring environments 

Transform Cybersecurity Operations 

• Assess and modernize IT and OT security operations capabilities 
• Architect and implement SIEM, SOAR, and next-generation detection & response solutions 
• Design SOC operating models that support hybrid IT/OT ecosystems 
• Leverage automation, orchestration, and advanced analytics to enhance detection and response outcomes 

Design & Secure AI-Enabled Environments 

• Evaluate and design AI-enabled solutions that enhance cybersecurity operations, including: 
• AI-assisted threat detection and anomaly analysis 
• Automated investigation and response workflows 
• Predictive risk modeling and analytics 
• Architect secure AI infrastructure that supports lines of business, ensuring: 
• Secure model deployment environments 
• Data protection and access controls for training and inference pipelines 
• Monitoring and logging for AI systems 
• Alignment to responsible AI and regulatory considerations 
• Advise clients on risk management strategies for AI systems, including model integrity, data security, and operational resilience 

Strengthen Governance, Risk & Compliance 

• Lead security posture and maturity assessments 
• Design and implement programs aligned to frameworks such as: NERC CIP, IEC 62443 , NIST CSF / 800-53 , ISO 27001 
• Align AI, IT, and OT security controls with regulatory and compliance requirements 
• Support audit readiness and control validation initiatives 

Drive Client & Practice Impact 

• Facilitate architecture workshops, security assessments, and executive strategy discussions 
• Act as a trusted advisor to CIOs, CISOs, and operational leadership 
• Support proposal development, solution design, and client presentations 
• Contribute to development of IT/OT and AI security reference architectures and thought leadership 

What You Bring 

• 7–10+ years of experience in security architecture, enterprise cybersecurity engineering, or IT/OT architecture 
• Experience working within or consulting to Energy & Utilities (electric, gas, or water) or other highly regulated industries 
• Strong understanding of IT/OT convergence and industrial control systems (ICS) security 
• Demonstrated experience designing, implementing, and evaluating enterprise cybersecurity tooling, including: 
  • IAM and identity governance 
  • Network security architecture and segmentation 
  • Endpoint detection technologies 
  • SIEM/SOAR and SOC tooling 
  • OT monitoring platforms (e.g., Dragos or similar) 
  • Cloud-native security solutions 
• Experience modernizing and integrating security operations across hybrid environments 
• Familiarity with AI-enabled security technologies and securing AI/ML infrastructure 
• Experience with governance, risk, and compliance frameworks such as NERC CIP, IEC 62443, NIST, or ISO standards 
• Strong executive communication and stakeholder engagement skills 
• Ability to translate business and operational objectives into secure, scalable architectural solutions 
• Willingness to travel for client engagements 

Preferred / Plus Qualifications 

• Prior consulting experience in a client-facing advisory role 
• Experience leading IT/OT transformation programs 
• Familiarity with emerging AI governance and model risk management frameworks 
• Relevant certifications (CISSP, CISM, CCSP, cloud security certifications) 
• Experience with platforms such as Splunk, Microsoft Sentinel, Google SecOps, Palo Alto, ServiceNow SecOps, SailPoint, Okta, CrowdStrike, or similar enterprise tools