Jobs · Information Technology

Security Architect

The Bridgespan Group · United States · 3 wk ago
RemoteRemoteInformation TechnologyFull-time

About the Role

We are seeking an experienced and strategic Cybersecurity Architect to lead the design and implementation of secure enterprise architectures across our technology landscape. Reporting into the Chief Architect position, this role supports development of security frameworks, and policies, as well as, guiding secure system design, and ensuring that cybersecurity controls are embedded across infrastructure, applications, cloud environments, and data platforms. This role will support the progressive needs of the business and implement timely, secure and cost-efficient solutions that elevate the company’s security posture.

This role also assists with client contractual reviews, compliance and security certifications.

Responsibilities

  • Support the design and maintenance of enterprise security architecture aligned with business and technology strategy
  • Help establish long-term security architecture roadmaps aligned to enterprise risk priorities
  • Apply and support the implementation of security standards, patterns, and best practices
  • Contribute to the development of security policies aligning with industry best practices for cybersecurity and resiliency
  • Conduct threat modeling and risk assessments for new and existing systems
  • Support alignment with frameworks such as NIST, ISO 27001, SOC 2, and Zero Trust models
  • Cloud & Infrastructure Security
    • Design secure solutions across public, private and hybrid clouds
    • Define security controls, policies and standards for networks, endpoints, containers, and hybrid environments
    • Implement identity and access management (IAM), encryption, network segmentation, logging and monitoring controls
    • Guide secure DevSecOps integration and CI/CD security practices
  • MSSP Coordination
    • Support establishing and managing the relationship with the MSSP who is expected to provide 24x7x365 Security Operations (SecOps), threat intelligence, security testing, security administration, SIEM and other services
    • Contribute to defining the operating model for outsourced security services, including roles, responsibilities, escalation paths, and decision rights
    • Help establish and manage the MSSP governance framework, including service reviews, risk reviews, roadmap alignment, and continuous improvement processes
    • Monitor, and report on SLAs, KPIs, and security outcomes; hold MSSP accountable for performance and service quality
    • Support onboarding of new systems, applications, and cloud environments into MSSP monitoring
    • Identify opportunities to optimize cost, improve automation, and increase operational efficiency within MSSP services
  • Governance, Risk & Compliance
    • Support translation of regulatory and compliance requirements into technical and security controls
    • Partner with contracts, audit and compliance teams to support client and third-party security assessments
    • Conduct security architecture reviews and provide recommendations on solution designs
    • Stay current with cybersecurity threats, AI, risks and vulnerabilities with potential impact to services
  • Engineering Collaboration
    • Work closely with engineering teams to embed security-by-design principles
    • Provide guidance on secure coding practices and application security
    • Contribute to evaluation and recommendation of security tools and technologies
    • Design security for monitoring, logging, IAM, encryption, data protection, detection and preventive controls
    • Lead security incident response improvements and post-incident design remediation

Qualifications

  • Bachelor’s degree in Computer Science, Information Security, or related field (Master’s degree is preferred)
  • 5+ years of experience in cybersecurity, with 3+ years in security architecture
  • Experience working with or supporting MSSP or third-party security vendor relationships
  • Deep knowledge of enterprise security frameworks and domains (network, cloud, endpoint, application, data security)
  • Proven experience with zero trust network access, encryption, web application firewalls, data protection, vulnerability management, API security
  • Knowledge in one or more: NIST, CIS, CSA-CCM, ISO 27001
  • Applicable knowledge as needed about GDPR, PCI DSS, CCPA, DPDP etc.
  • Experience with SIEM, EDR, IAM, firewalls, cloud security tooling, and detection technologies
  • Ability to perform threat modeling and enterprise risk analysis
  • Strong communication and stakeholder management skills
  • Ability to handle multiple demands and appropriately prioritize tasks as necessary
  • Ability to work with a high degree of independence, and generate high-quality outputs
  • High degree of professionalism, tact, and confidentiality required
  • Strong written and verbal communication skills are required
  • Commitment to strong performance, high standard of accountability, and openness to feedback
  • Commitment to diversity, equity, and inclusion

Preferred Certifications

  • CISSP
  • CISM
  • CCSP
  • Microsoft cloud security certifications

Similar jobs

Security Architect

Veeam SoftwareAlpharetta, GA· Today
Information Technology$150k–$234k/yrapply on careers.veeam.com

Security Architect

Enzo HealthLehi, UT· 1 mo ago
Information Technologyapply on ats.rippling.com

Security Architect

thyssenkrupp Materials NASouthfield, MI· 1 mo ago
Information Technologyapply on jobs.thyssenkrupp.com

Security Architect

Veolia | North AmericaMilwaukee, WI· 1 wk ago
Information Technologyapply on jobs.smartrecruiters.com

Security Architect

AGFA HealthCareUnited States· 1 wk ago
RemoteHealthcareapply on agfa-gevaert-nv.contactrh.com

Security Architect

Internet Storm CenterManhattan Beach, CA· 3 days ago
Information Technologyapply on isc.sans.edu