This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The Principal Technical Consultant (PTC) Identity Focused Security Architect is a hands-on delivery leader who designs and leads identity solution implementations in client environments. This role is not purely advisory. You will own identity workstreams end to end, driving architecture, implementation planning, execution oversight, and stakeholder alignment, primarily across Microsoft identity (Active Directory and Entra ID), IGA, and modern authentication patterns (SSO, MFA, passwordless). Experience with other IAM platforms (e.g., Okta) is a strong plus, and PAM experience is a plus as well. - Identity architecture and implementation leadership - Lead identity workstreams from discovery and current state analysis through target state architecture, implementation planning, delivery oversight, and closeout. - Design and deliver Microsoft identity solutions with a deep focus on Active Directory and Microsoft Entra ID, including hybrid identity patterns where applicable. - Drive the technical approach for modern authentication and federation capabilities, including SSO, MFA, and passwordless. - Identity Governance and Administration (IGA) delivery - Lead and or execute IGA-focused deliverables such as: - Joiner mover-leaver lifecycle processes - Provisioning and deprovisioning patterns - Access request workflows where applicable - Role and policy model improvement to reduce risk and increase operational clarity - Access control model design - Apply and communicate access control methodologies, including RBAC, ABAC, and PBAC, translating business requirements into implementable identity and authorization designs. - Client-facing consulting and execution - Own day-to-day technical leadership with clients: requirements sessions, whiteboarding, design reviews, implementation coordination, and executive-ready communication. - Coordinate delivery across client stakeholders (engineering teams through senior security leaders) to align on priorities, sequencing, and execution plans. - Produce clear, high-quality deliverables (architecture diagrams, implementation plans, runbooks, and decision documentation). Qualifications - Strong Microsoft identity architecture and implementation experience, especially Active Directory and Entra ID. - Hands-on IGA knowledge and delivery experience in real client environments. - Strong understanding of access control methodologies: RBAC, ABAC, PBAC. - Strong authentication expertise: SSO, MFA, passwordless, with design and implementation level understanding. - Demonstrated ability to lead implementation, not just advise: planning, execution oversight, and delivery ownership. - Proven client-facing consulting capability: stakeholder management, clear communication, and whiteboard-ready technical leadership. Requirements - Support implementations or integrations with other IAM platforms (Okta or comparable solutions). - Contribute to or support PAM initiatives (Privileged Access Management), such as privileged access workflows, vaulting patterns, and privileged lifecycle controls, when in scope. Preferred Qualifications - Experience implementing or supporting Okta or similar IAM platforms. - PAM experience (Privileged Access Management). - Scripting or automation exposure (PowerShell, Python) to support identity integrations and operationalization. Benefits - Medical, Dental, and Vision Insurance - 401(k) - Paid company holidays - Paid time off - Paid parental and caregiver leave - Plus more! See benefits here for additional details. Compensation $200,000 - $230,000 a year. The compensation range indicated in this posting reflects the On-Target Earnings (“OTE”) for this role, which includes a base salary and any applicable target bonus amount. This OTE range may vary based on the candidate’s relevant experience, qualifications, and geographic location.

About Lumen Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress. We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. The Role The Principal Product Security Architect is a senior technical leadership role responsible for the research, design, prototyping, and operationalization of advanced security solutions delivered through Lumen’s Managed and Professional Security Services portfolio. This role bridges Product Development, R&D, Engineering, and Security Operations, ensuring that security architectures are scalable, automated, operationally viable, and aligned with Lumen Validated Designs (LVD). The architect will drive innovation enabling differentiated, market‑ready cybersecurity offerings that support end‑to‑end lifecycle delivery (Day 0 design, Day 1 implementation, Day 2 SOC operations). Location This is a remote opportunity open to candidates located anywhere in the U.S. The Main Responsibilities - Lead research and development (R&D) of new and emerging security technologies to be brought to market under Lumen Managed and Professional Services. - Define evaluation plans, success criteria, and validation frameworks for assessing security platforms, tools, and integrated solutions. - Architect, design, and lead the development of prototype and proof‑of‑concept solutions, transitioning validated designs into production‑ready offerings. - Partner closely with Security Operations (SOC) and Product Management teams to ensure architectures are operationally sound, automatable, and support 24/7 delivery models. - Collaborate across Product Management, Engineering, Operations, Sales Engineering, Legal and Service Assurance to align technical design with product strategy and customer requirements. - Evaluate, design, and implement security automation and orchestration capabilities for SecOps, including SOAR‑driven workflows and AI‑assisted operations. - Develop and maintain architecture documentation, reference designs, runbooks, and operational guides Additional Responsibilities - Design architectures that explicitly account for multitenant, shared infrastructure, cloud and customer owned environments. - Design solutions that prioritize alert quality, analyst efficiency, and measurable SOC outcomes, including false positive reduction and meantime to respond improvements. - Ensure all architectures include Day 2 operational metrics, instrumentation, and feedback loops. - Deliver technical enablement and training for internal teams, including SOC analysts, engineers, and solution architects. - Engage with third‑party security technology providers across Lumen’s connected ecosystem to architect joint managed solutions. - Support end‑to‑end security solution delivery, from initial architecture through implementation and steady‑state SOC operations (Day 0 / Day 1 / Day 2). - Work with stakeholders to understand interface requirements and operational needs included AI compliance, Security, and Risk Management - Ensure designs are consumable by Public Sector customers, where appropriate, including systems requiring Authority To Operate (ATO) What We Look For in a Candidate - 15+ years of experience in Managed Security Services environments. - 10+ years of hands‑on experience working in or directly supporting a 24/7 Security Operations Center (SOC). - Deep architecture and implementation experience across cloud‑based and on‑premises security solutions for end customers. - Experience scaling workflow and automation for SecOps - Proven experience delivering end‑to‑end security solutions, from design through operational handoff. - Strong working knowledge of industry security frameworks and compliance standards, including NIST, PCI‑DSS, HIPAA, and similar regulatory models. - Ability to work concurrently across multiple security technologies while rapidly learning and adopting new platforms. - Experience working with Global SOCs environments - Must be US Citizen, Security Clearance preferred. - CISSP required. - Additional equivalent or advanced security/vendor certifications strongly preferred. Technical Expertise Experience across a broad set of security technologies, including but not limited to: - MDR / XDR - Managed SIEM (cloud & on prem) - SOAR and playbooks - Next‑Generation Firewalls (NGFW) - Vulnerability Scanning and Management - CASB - SASE - Quantum‑related security concepts (e.g., QKE) - AI‑driven security analytics and automation - Security of AI (model protection, data integrity, adversarial resilience) - AI for Security (threat detection, response automation, predictive analytics) - Threat intelligence integration and operationalization (internal and thirdparty feeds) - Identity Cenric architectures Compensation This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. Location Based Pay Ranges $152,066 - $202,755 in these states: AL AR AZ FL GA IA ID IN KS KY LA ME MO MS MT ND NE NM OH OK PA SC SD TN UT VT WI WV WY $159,670 - $212,893 in these states: CO HI MI MN NC NH NV OR RI $167,273 - $223,031 in these states: AK CA CT DC DE IL MA MD NJ NY TX VA WA Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's:BenefitsBonus Structure Requisition #: 341494 Background Screening If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page. Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Equal Employment Opportunities We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. Privacy Notice Lumen is committed to protecting the privacy and security of personal information collected during the recruitment and hiring process. Our Privacy Notice explains how we collect, use, disclose, and protect applicant information, as well as how individuals may request access to or deletion of their personal data. To review Lumen’s Privacy Notice, please visit: https://jobs.lumen.com/global/en/privacy-notice Disclaimer The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

• Develop a deep understanding of the client’s business and unique security needs to deliver tailored engagements that exceed expectations. • Build and maintain positive relationships with clients, ensuring ongoing satisfaction and partnership. • Provide clients with continual insights and consultative advice based on experience with Tenable products, their industry, established standards, and best practices. • Support clients with the installation, configuration, and operation of Tenable solutions, ensuring they are effectively implemented to meet business and security goals. • Oversee upgrades and migrations to new hardware or software, facilitating smooth transitions with minimal disruption. • Offer expert guidance on implementing best practices with Tenable solutions to optimize security workflows and operational efficiency. • Assist clients in developing and maintaining security policies, standards, and procedures, ensuring they align with industry standards and regulatory requirements. • Provide ongoing value through insights and consultative advice on Tenable products, tailored to client needs and industry best practices. • Share thought leadership on effective deployment and utilization of Tenable One solutions. • Guide clients in implementing best practices and developing Exposure Management Programs. • Assess user needs and customer requirements to advance the maturity of their Exposure Management program. • Deliver additional value through continual insights and consultative advice based on Tenable products, client needs, industry standards, and best practices. • Provide thought leadership on methods and best practices for deploying and using Tenable One solutions. • Advise clients on process best practices and assist in developing Exposure Management Programs. • Research user needs and assess customer requirements to enhance the maturity of their Exposure Management program. • Ensure overall customer satisfaction while supporting delivery revenue objectives. • Execute large customer engagements, understanding client business and unique needs to exceed expectations. • Independently manage client escalations on assigned projects, coordinating with the delivery team and other Tenable departments as needed. • Develop and maintain positive client relationships and train client staff on the implementation, configuration, and best practices of the Tenable suite. • Perform other duties as assigned to support the success of the Professional Services team and the overall organization.

• Define, establish and implement organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met. • Manage the internal and external ISMS audit processes, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization. • Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, PCI DSS and other regulatory security audits. • Coordinate external security audits, assessments and testing as well as remediation plans development and implementation. • Identify, assess and monitor information security risks and recommend mitigation measures. • Develop content, coordinate and facilitate a comprehensive organizational information security awareness training program. • Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts. • Develop, coordinate and maintain information security policies, procedures and other security related documents. • Analyse, map and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions. • Serve as project manager/lead within security projects. • Continually improve and update knowledge to accommodate changes to the company’s regulatory environment and needs.