Information Security Architect
About the role
The Information Security Architect role is instrumental in guiding internal developers and vendor partners on security strategy and requirements. This role analyzes the current security program, designs future states, and creates implementation roadmaps to enhance the security posture of the organization.
Responsibilities
- Analyze the current state of the security program, design future states, and create an implementation roadmap.
- Develop business cases and key performance indicators (KPIs) to socialize the security program.
- Assess, manage, and improve security policies and procedures to align with industry best practices.
- Collaborate with other architects and the Security Operations Manager to develop global security strategies.
- Develop and maintain a security architecture process aligned with business and technology drivers.
- Draft security procedures and standards for executive management approval.
- Perform risk assessments, advise on risk response strategies, and facilitate threat modeling.
- Coordinate with DevOps teams to advocate for secure coding practices.
- Evaluate, select, and implement security technologies, tools, and solutions.
- Develop and deliver security awareness training programs to educate employees.
Requirements
- Education: A Bachelor’s degree in Computer Science, Information Security, or a related field is required.
- Experience: Proven experience of 5+ years in information security architecture, design, and implementation is required.
- Technical Skills: Understanding of information security regulations, including FISMA, FedRAMP, ISO 27001, COBIT, NIST, and ITIL; proficiency in Microsoft Office Suite (Word, Excel, Outlook); experience with maintaining security, conducting assessments, and performing incident forensic work; general knowledge of network security principles and overall cybersecurity; excellent documentation and communication skills.
Qualifications
- An advanced degree is preferred.
- Experience with government agencies and associated security requirements.
- Professional certifications such as CISSP, CISM, or CISA are considered a plus.
Benefits
Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We also offer an ESPP (employee stock purchase program), a 401K program, a Health Savings Account (HSA) on the HDHP plan, a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program, and other discounts. Professional development includes an on-demand training program, access to certification prep and a library of technical and leadership courses/books/seminars, certification discounts, and perks to associations like CompTIA and IIBA. We also have a dedicated customer service team for our Consultants to address questions about benefits and other resources, and a certified Career Coach. For more information, see our Welcome Packet provided by an Everforth Apex team member. Everforth Apex is an equal opportunity employer and considers qualified applicants with criminal histories in a manner consistent with applicable law.