Lead Cyber Architect

col-narrow-left
Job ID:
2504938
Location:
San Francisco, CA
Category:
Information Technology, Telecommunications, Array
Salary:
per year
Employment Type:
Full time
Posted:
09.12.2018
col-narrow-right
col-wide

Job Description:

Lead Cybersecurity Architect

This person will design, build and lead a team of cyber security architects, in platform, applications, storage network virtualization, cloud mobile security. This person will of come up through the ranks and is a true architect over cyber security in a large enterprise environment.

RESPONSIBILITIES

  • Design, build, and lead a team that ensures the security of enterprise data and systems by specifying requirements for technical security controls for all enterprise information technology development initiatives.
  • Develop a capability to design, implement, and continuously update a technical security control requirements model supporting enterprise information security policies and standards, enterprise technology strategy, enterprise technology architecture and patterns, information security industry best practices, emerging information security technologies, and relevant laws and regulations (eg HIPAA, Sarbanes-Oxley, GLB, and others.)
  • Develop a capability to evaluate the architecture and design of existing and proposed information technology systems against the enterprise technical security control requirements model. Enable the organization to identify any gaps between specific technical security requirements and the architecture of a given system and provide detailed technical recommendations on appropriate design or architecture improvements.
  • Develop a capability to assist the organizations responsible for the architecture, design, implementation, and deployment of technical security controls by providing virtual team resources and knowledge sharing to enterprise information technology development initiatives.
  • Develop a capability to verify that the requirements for technical security controls were addressed correctly and that all recommendations were implemented effectively (this includes collecting necessary information, verifying the accuracy of the information, testing the solution, and building an assurance argument).
  • Serve as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks.
  • Identify security control requirements for technology initiatives and deliver effective and practical solutions to meet those requirements in alignment with the overall objectives of the project and the business.
  • Work with Enterprise Architects and other functional area architects and security specialists to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate identified risks sufficiently and support business objectives.
  • Serve as an expert in platform, application, storage, network, virtualization, cloud and mobile security best practices.

REQUIREMENTS

  1. A strong working understanding of enterprise technologies, operations, and architectural principles and models. Knowledge of virtualized data center architectures and operations, SOA-type deployments, web services and multi-tier web applications, and technologies supporting Intranet, Extranet, and remote access services. Must be able to evaluate disparate IT system architectures and designs in Real Time and recommend appropriate security control and countermeasure solutions.
  2. A strong working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors).
  3. Knowledge of laws, regulations, and standards relevant to the US Healthcare industry.
  4. Externally recognized information security industry thought leadership and innovation accomplishments desired but not required.
  5. Bachelor's or Master's Degree in Computer Science, Information Systems, or other related field (or equivalent work experience).
  6. A widely-recognized technical certification such as GIAC or CISSP is strongly preferred.
  7. Minimum 8 years of hands-on experience in the information security field with expert knowledge of platform, application, storage, data, network, virtualization, cloud and mobile security.
  8. Minimum 2 years of experience in information security solution engineering or security service delivery.
  9. Minimum 2 years of leadership experience with planning and managing security engagements and/or leading a team of technical resources. This role will require the management of several (2 to 4) concurrent large-scale enterprise wide information technology capability development projects.
Company Info
Request Technology - Robyn Honquest