Information Security Architect
Role details
Job location
Tech stack
Job description
We are seeking an Information Security Architect to serve as the principal security advisor for planning, designing, implementing, and maintaining systems. This role will guide internal developers and vendor partners on security strategy and requirements. The position is instrumental in analyzing the current security program, designing future states, and creating implementation roadmaps to enhance the security posture of the organization., * Analyze the current state of the security program, design future states, and create an implementation roadmap.
- Develop business cases and key performance indicators (KPIs) to socialize the security program.
- Assess, manage, and improve security policies and procedures to align with industry best practices.
- Collaborate with other architects and the Security Operations Manager to develop global security strategies.
- Develop and maintain a security architecture process aligned with business and technology drivers.
- Draft security procedures and standards for executive management approval.
- Perform risk assessments, advise on risk response strategies, and facilitate threat modeling.
- Coordinate with DevOps teams to advocate for secure coding practices.
- Evaluate, select, and implement security technologies, tools, and solutions.
- Develop and deliver security awareness training programs to educate employees.
Requirements
Education: A Bachelor's degree in Computer Science, Information Security, or a related field is required.
Experience: Proven experience of 5+ years in information security architecture, design, and implementation is required.
Technical Skills:
- Understanding of information security regulations, including FISMA, FedRAMP, ISO 27001, COBIT, NIST, and ITIL.
- Proficiency in Microsoft Office Suite (Word, Excel, Outlook).
- Experience with maintaining security, conducting assessments, and performing incident forensic work.
- General knowledge of network security principles and overall cybersecurity.
- Excellent documentation and communication skills.
Preferred Qualifications
- An advanced degree is preferred.
- Experience with government agencies and associated security requirements.
- Professional certifications such as CISSP, CISM, or CISA are considered a plus.