View all jobs
Sr. IT Security Architect ~ 100% Remote in U.S.
Remote, USASr. IT Security Architect ~ 100% Remote in U.S.
The Senior Information Security Architect will be a key member of the Information Security team. This individual will actively contribute to the development of the information security strategy. S/he will provide leadership and expertise in the development of standards, architectural governance, design patterns, and IT security practices for projects across the enterprise and will serve as the internal information security architecture subject matter expert.
RESPONSIBILITIES
The Senior Information Security Architect will be a key member of the Information Security team. This individual will actively contribute to the development of the information security strategy. S/he will provide leadership and expertise in the development of standards, architectural governance, design patterns, and IT security practices for projects across the enterprise and will serve as the internal information security architecture subject matter expert.
RESPONSIBILITIES
- Develop and document technical security standards; drive the implementation of solid technical security principles across the organization to achieve the strategic goals or objectives of the corporate information security program.
- Design, document, and validate technical security architecture designs for new and existing systems.
- Lead and facilitate the evaluation and selection of security technologies and product standards, and the design of standard configurations/implementation patterns for security solutions.
- Develop reference security architectures (including requirements, design patterns, and other artifacts) for use throughout the company, technology partners, and third-party service providers (MSSP).
- On an as-needed basis, in conjunction with Information Security risk management and IT project teams, engage in security review and consultation during the design and implementation phases of new and existing projects to analyze areas of security concern. Align these project efforts with company policy, industry best practices, and regulatory mandates as applicable.
- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
- Assist with the development and refinement of the Information Security program roadmap.
- Partner with information security risk management to provide Information Security control expertise, guidance, and direction on secure application hosting for internal and client-facing application systems.
- Design security architecture elements to mitigate threats as they emerge.
- Minimum of 7 years experience in information security architecture or engineering.
- Bachelors or Masters degree in Computer Science preferably with a focus on Cybersecurity.
- Professional information security certifications such as the CISSP-ISSAP or Azure Solutions Architect
- Must have a strong working knowledge of security controls for legacy on-premise infrastructure and cloud-based computing services including Azure IaaS/PaaS.
- Strong knowledge of common information security frameworks, including CIS Top 20 Controls, ISO 27001, and NIST 800-53 Series.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to both technical and non-technical audiences.
- Strong leadership, project, and mentoring skills, including the ability promote security by design and default principles to business and IT stakeholders.
- Ability to lead cross-functional, interdisciplinary teams to design architecture that minimizes information security risks.