HPC Security Architect

As an HPC Security Architect at Qvelo, you will be responsible for designing and implementing robust security architectures for high-performance computing (HPC) environments. You will play a critical role in ensuring that HPC systems, which often handle sensitive and mission-critical workloads, are protected against a wide range of cybersecurity threats. You will work closely with HPC engineers, system administrators, and client stakeholders to develop comprehensive security strategies that encompass on-premises, cloud, and hybrid infrastructures, ensuring the highest levels of protection, compliance, and operational efficiency.

Key Responsibilities:

• Design and implement end-to-end security architectures for HPC systems, including compute clusters, storage systems, and network infrastructures, ensuring protection against evolving cyber threats.
• Develop and enforce security policies and controls that safeguard HPC environments from unauthorized access, data breaches, and insider threats.
• Ensure that HPC systems adhere to the principles of Zero Trust Architecture (ZTA), implementing continuous verification, least privilege access, and segmentation strategies to minimize attack surfaces.
• Collaborate with HPC infrastructure teams to integrate security best practices during the design, deployment, and optimization of HPC systems, including cloud and hybrid architectures.
• Implement and manage advanced encryption technologies to protect sensitive data both at rest and in transit within HPC environments.
• Design and implement network security controls, including firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and secure communication protocols for HPC interconnects (e.g., InfiniBand, Ethernet).
• Develop and manage identity and access management (IAM) solutions, including multi-factor authentication (MFA) and role-based access controls (RBAC) for users and services interacting with HPC systems.
• Conduct risk assessments and vulnerability scans to identify security weaknesses, recommend mitigations, and ensure that HPC environments remain secure against cyber threats.
• Design and maintain security monitoring systems to detect anomalies, potential intrusions, and suspicious behavior, leveraging tools such as SIEM (Security Information and Event Management) and AI-driven threat detection.
• Collaborate with compliance teams to ensure that HPC systems meet regulatory and industry standards such as GDPR, HIPAA, ITAR, and FISMA, and support audit processes when necessary.
• Lead incident response efforts, ensuring that security incidents are handled swiftly, minimizing downtime and data loss while conducting root cause analysis and mitigation.
• Provide ongoing training and guidance to technical teams on HPC security best practices, ensuring that security remains a priority across all aspects of HPC infrastructure management.

Requirements:

• 8+ years of experience in cybersecurity, with a strong focus on designing security architectures for large-scale IT or HPC environments.
• In-depth knowledge of high-performance computing (HPC) systems, including parallel computing, storage, and networking architectures.
• Expertise in network security, encryption technologies, secure access controls, and cloud security in HPC or similarly complex environments.
• Proven experience in risk management, threat modeling, and vulnerability assessment for HPC systems or large-scale IT infrastructures.
• Strong understanding of Zero Trust Architecture (ZTA) principles and the ability to implement ZTA in distributed computing environments.
• Proficiency in encryption technologies, data protection strategies, and secure communication protocols.
• Experience in designing secure hybrid cloud environments and implementing cloud-native security controls on platforms such as AWS, Azure, or Google Cloud.
• Experience with IAM solutions (e.g., Active Directory, LDAP, MFA) and role-based access controls for managing secure access to HPC resources.
• Familiarity with security compliance frameworks (GDPR, HIPAA, ITAR, FISMA) and the ability to design architectures that meet these requirements.
• Strong problem-solving skills, with the ability to analyze complex security challenges and develop effective solutions tailored to HPC environments.
• Excellent communication skills and experience working closely with engineering teams and non-technical stakeholders to implement security strategies.

Preferred Qualifications:

• Certifications such as CISSP, CISM, CEH, or CISA.
• Experience in AI/ML security and its application in monitoring and protecting HPC environments.
• Knowledge of DevSecOps practices, including integrating security protocols into the CI/CD pipeline for HPC deployments.
• Experience with quantum-safe encryption and knowledge of emerging trends in securing quantum computing infrastructures.
• Familiarity with high-speed interconnects (InfiniBand, Ethernet) and securing network infrastructures in HPC systems.