Security Architect

  • location: Boston, MA
  • type: Contract
  • salary: $70 - $72 per hour
easy apply

job description

Security Architect

job summary:
Security Architect: US Citizens or Green Card Holders. Unable to sponsor

In this role, the Security Architect is responsible for the technical oversight of the enterprise's information security technology portfolio and program. The Security Architect is a technologist and a subject matter expert (SME) for all information security platforms and is responsible for developing the organization's information security engineering solutions as well as auditing information security procedures and investigating information security events & incidents. As a leader within the organization, this is a central role actively promoting a culture of information security throughout the IT organization as well as across the enterprise. The scope of this position spans the organization's technology solutions including software applications, infrastructure, data management, data integration and vendor solutions. This individual will develop a thorough understanding of all IT systems and how those systems are secured; responsible for advising the Infrastructure, Product Management teams on emerging vulnerabilities and newly introduced risks to enterprise systems, and taking a proactive approach in continually assessing the security of those systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

RESPONSIBILITIES:

- Proactively recommend and drive security enhancements to management

- Integrate with Peer groups and industry experts to measure our programs and results

- Staff - monitoring, oversight, and administrative tasks

- Oversee and recommend strategies to respond to and recover from a security breach

- Educate the workforce on information security through training, newsletters, etc.

- Implement and use software to protect organizations' sensitive information.

- Participate in and manage Infrastructure portions of projects in coordination with Project Managers.

- Work closely with application development teams to ensure secure coding standards/practices

- Test security plans, products and control techniques

- Coordinate and monitor vulnerability scans, application and network penetration testing, risk assessments, tabletop exercises

- Work collaboratively with other technical teams to address system and application vulnerabilities.

- Work with Internal Audit and other consultants as required

- Engage and participate in industry peer groups.

- Keep abreast of industry trends and best practices.

- Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

- Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.

- Strategy, planning, and operational excellence through continuous improvement and automation.

- Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team

- Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations' information systems.

- Play a primary role in the selection of new information security technologies.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.

- Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.

- Develop, maintain and publish up-to-date security standards and guidelines, and oversee training and dissemination of security policies and practices.

- Provide technical leadership for all information security platforms.

- Serve as the escalation point for technical issues related to information security platforms.

- Take a lead role in developing technical solutions and methodologies for information security programs, including, but not limited to; information security technologies, vulnerability management, vendor risk management and risk management.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Engage proactively in risk management activities.

- Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.

- Promote a culture of information security across all business units.

REQUIREMENTS

- Bachelor's in Information Technology, Computer Science, Engineering or related field.

- CISA, CISSP, CISSP-ISSEP or similar certification required. In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.

- 10 + years of full time experience designing, architecting and implementing information security technology solutions.

- 10+ years of full time experience in dedicated, technical information security roles

 
location: Boston, Massachusetts
job type: Contract
salary: $70 - 72 per hour
work hours: 9 to 5
education: Bachelors
 
responsibilities:
Security Architect: US Citizens or Green Card Holders. Unable to sponsor

In this role, the Security Architect is responsible for the technical oversight of the enterprise's information security technology portfolio and program. The Security Architect is a technologist and a subject matter expert (SME) for all information security platforms and is responsible for developing the organization's information security engineering solutions as well as auditing information security procedures and investigating information security events & incidents. As a leader within the organization, this is a central role actively promoting a culture of information security throughout the IT organization as well as across the enterprise. The scope of this position spans the organization's technology solutions including software applications, infrastructure, data management, data integration and vendor solutions. This individual will develop a thorough understanding of all IT systems and how those systems are secured; responsible for advising the Infrastructure, Product Management teams on emerging vulnerabilities and newly introduced risks to enterprise systems, and taking a proactive approach in continually assessing the security of those systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

RESPONSIBILITIES:

- Proactively recommend and drive security enhancements to management

- Integrate with Peer groups and industry experts to measure our programs and results

- Staff - monitoring, oversight, and administrative tasks

- Oversee and recommend strategies to respond to and recover from a security breach

- Educate the workforce on information security through training, newsletters, etc.

- Implement and use software to protect organizations' sensitive information.

- Participate in and manage Infrastructure portions of projects in coordination with Project Managers.

- Work closely with application development teams to ensure secure coding standards/practices

- Test security plans, products and control techniques

- Coordinate and monitor vulnerability scans, application and network penetration testing, risk assessments, tabletop exercises

- Work collaboratively with other technical teams to address system and application vulnerabilities.

- Work with Internal Audit and other consultants as required

- Engage and participate in industry peer groups.

- Keep abreast of industry trends and best practices.

- Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

- Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.

- Strategy, planning, and operational excellence through continuous improvement and automation.

- Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team

- Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations' information systems.

- Play a primary role in the selection of new information security technologies.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.

- Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.

- Develop, maintain and publish up-to-date security standards and guidelines, and oversee training and dissemination of security policies and practices.

- Provide technical leadership for all information security platforms.

- Serve as the escalation point for technical issues related to information security platforms.

- Take a lead role in developing technical solutions and methodologies for information security programs, including, but not limited to; information security technologies, vulnerability management, vendor risk management and risk management.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Engage proactively in risk management activities.

- Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.

- Promote a culture of information security across all business units.

REQUIREMENTS

- Bachelor's in Information Technology, Computer Science, Engineering or related field.

- CISA, CISSP, CISSP-ISSEP or similar certification required. In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.

- 10 + years of full time experience designing, architecting and implementing information security technology solutions.

- 10+ years of full time experience in dedicated, technical information security roles

 
qualifications:
Security Architect: US Citizens or Green Card Holders. Unable to sponsor

In this role, the Security Architect is responsible for the technical oversight of the enterprise's information security technology portfolio and program. The Security Architect is a technologist and a subject matter expert (SME) for all information security platforms and is responsible for developing the organization's information security engineering solutions as well as auditing information security procedures and investigating information security events & incidents. As a leader within the organization, this is a central role actively promoting a culture of information security throughout the IT organization as well as across the enterprise. The scope of this position spans the organization's technology solutions including software applications, infrastructure, data management, data integration and vendor solutions. This individual will develop a thorough understanding of all IT systems and how those systems are secured; responsible for advising the Infrastructure, Product Management teams on emerging vulnerabilities and newly introduced risks to enterprise systems, and taking a proactive approach in continually assessing the security of those systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

RESPONSIBILITIES:

- Proactively recommend and drive security enhancements to management

- Integrate with Peer groups and industry experts to measure our programs and results

- Staff - monitoring, oversight, and administrative tasks

- Oversee and recommend strategies to respond to and recover from a security breach

- Educate the workforce on information security through training, newsletters, etc.

- Implement and use software to protect organizations' sensitive information.

- Participate in and manage Infrastructure portions of projects in coordination with Project Managers.

- Work closely with application development teams to ensure secure coding standards/practices

- Test security plans, products and control techniques

- Coordinate and monitor vulnerability scans, application and network penetration testing, risk assessments, tabletop exercises

- Work collaboratively with other technical teams to address system and application vulnerabilities.

- Work with Internal Audit and other consultants as required

- Engage and participate in industry peer groups.

- Keep abreast of industry trends and best practices.

- Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

- Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.

- Strategy, planning, and operational excellence through continuous improvement and automation.

- Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team

- Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations' information systems.

- Play a primary role in the selection of new information security technologies.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.

- Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.

- Develop, maintain and publish up-to-date security standards and guidelines, and oversee training and dissemination of security policies and practices.

- Provide technical leadership for all information security platforms.

- Serve as the escalation point for technical issues related to information security platforms.

- Take a lead role in developing technical solutions and methodologies for information security programs, including, but not limited to; information security technologies, vulnerability management, vendor risk management and risk management.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Engage proactively in risk management activities.

- Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.

- Promote a culture of information security across all business units.

REQUIREMENTS

- Bachelor's in Information Technology, Computer Science, Engineering or related field.

- CISA, CISSP, CISSP-ISSEP or similar certification required. In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.

- 10 + years of full time experience designing, architecting and implementing information security technology solutions.

- 10+ years of full time experience in dedicated, technical information security roles

 
skills: Security Architect: US Citizens or Green Card Holders. Unable to sponsor

In this role, the Security Architect is responsible for the technical oversight of the enterprise's information security technology portfolio and program. The Security Architect is a technologist and a subject matter expert (SME) for all information security platforms and is responsible for developing the organization's information security engineering solutions as well as auditing information security procedures and investigating information security events & incidents. As a leader within the organization, this is a central role actively promoting a culture of information security throughout the IT organization as well as across the enterprise. The scope of this position spans the organization's technology solutions including software applications, infrastructure, data management, data integration and vendor solutions. This individual will develop a thorough understanding of all IT systems and how those systems are secured; responsible for advising the Infrastructure, Product Management teams on emerging vulnerabilities and newly introduced risks to enterprise systems, and taking a proactive approach in continually assessing the security of those systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

RESPONSIBILITIES:

- Proactively recommend and drive security enhancements to management

- Integrate with Peer groups and industry experts to measure our programs and results

- Staff - monitoring, oversight, and administrative tasks

- Oversee and recommend strategies to respond to and recover from a security breach

- Educate the workforce on information security through training, newsletters, etc.

- Implement and use software to protect organizations' sensitive information.

- Participate in and manage Infrastructure portions of projects in coordination with Project Managers.

- Work closely with application development teams to ensure secure coding standards/practices

- Test security plans, products and control techniques

- Coordinate and monitor vulnerability scans, application and network penetration testing, risk assessments, tabletop exercises

- Work collaboratively with other technical teams to address system and application vulnerabilities.

- Work with Internal Audit and other consultants as required

- Engage and participate in industry peer groups.

- Keep abreast of industry trends and best practices.

- Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

- Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.

- Strategy, planning, and operational excellence through continuous improvement and automation.

- Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team

- Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations' information systems.

- Play a primary role in the selection of new information security technologies.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.

- Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.

- Develop, maintain and publish up-to-date security standards and guidelines, and oversee training and dissemination of security policies and practices.

- Provide technical leadership for all information security platforms.

- Serve as the escalation point for technical issues related to information security platforms.

- Take a lead role in developing technical solutions and methodologies for information security programs, including, but not limited to; information security technologies, vulnerability management, vendor risk management and risk management.

- Conduct regular technical risk assessments/audits of systems and infrastructure.

- Engage proactively in risk management activities.

- Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.

- Promote a culture of information security across all business units.

REQUIREMENTS

- Bachelor's in Information Technology, Computer Science, Engineering or related field.

- CISA, CISSP, CISSP-ISSEP or similar certification required. In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.

- 10 + years of full time experience designing, architecting and implementing information security technology solutions.

- 10+ years of full time experience in dedicated, technical information security roles


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs

    IT Audit Manager

  • location: Boston, MA
  • job type: Permanent
  • salary: $85,000 - $110,000 per year
  • date posted: 9/12/2018

    SQL DBA

  • location: Boston, MA
  • job type: Contract
  • salary: $45 - $50 per hour
  • date posted: 9/14/2018