Responsibilities
- Review existing security architecture, identify design gaps and recommend security enhancements
- Stay abreast of current and emerging security threats and design security architecture to mitigate them
- Stay abreast of emerging security technologies and integrate them into security architecture as needed
- Ensure alignment between security architecture frameworks and standards and overall business strategy
- Serve as an information security expert and trusted advisor to partners in IT and the business
- Achieve security architecture compliance on requirements, including, but not limited to, Sarbanes-Oxley, payment card industry standards, HIPAA/HITECH, global data privacy requirements and state and federal regulations
Goals
- Enterprise security architecture strategy
- Security Reference architectures
- Security architecture patterns
- Security integration patterns
- Security platform architectures and designs
- Owns and leads security reference architectures, roadmaps, patterns and technical evaluations
- Formulates architecture guardrails to support business and technology imperatives
- Engages in SA problem solving, snapshots and full architecture documents
- Actively publishes deliverables, and utilizes multi-media to engage with community members
- Domain expertise in security architecture including data protection, identity access management, software security, application security and cloud security
Basic Qualifications
- Bachelor’s degree in Computer Science, Engineering or related field
- Experience working in information security or risk management
- AWS Azure Architecture Certification
- CISSP – ISSAP Certification optional
Preferred qualifications
- An understanding of the impact of emerging business and end-user technologies on information security requirements and architecture
- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
- Demonstrated technical expertise in existing security and IT systems, and an ability to keep pace with changing security and IT technologies
- Strong interpersonal skills, with an emphasis on the ability to effectively influence others
- A team-focused mentality with the proven ability to work effectively with diverse stakeholders
- An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner
- Architecture Methodology (TOGAF, Archimate)
- AWS, Azure Security