Advisor-Enterprise Security Architect

Information Technology - Enterprise Software Implementation

The Information Security Architecture (ISA) organization is tasked with ensuring that technology initiatives demonstrate a responsible, risk-based approach to managing information and information risks in accordance with the expectations of its shareholders, regulators and corporate policies. Within the ISA organization, the cloud and application security identity architect is responsible for working closely with stakeholders in infrastructure, applications, business, and security teams to develop the security roadmap for cloud and applications, advising projects and initiatives on cloud and application security practices, and creating the cloud and application lifecycle components of the secure enterprise reference architecture.

Along with peers in the ISA organization, the cloud and application security architect will partner with various teams in cloud services, application development, procurement, identity management, and threat monitoring functions to deploy a suite of technologies that support goals for cloud adoption and application development and lifecycle management. The information security cloud and applications architect is responsible for the overall technical security roadmap for cloud services, including infrastructure, platform, software, and business process as a service offerings.

The information security cloud and applications architect is also responsible for the overall technical security roadmap for application lifecycle management, including secure development lifecycle and vended software security. Key responsibilities include managing the existing portfolio, identifying gaps, selecting new technologies, designing implementation and operations plans, and ensuring that the portfolio over time represents exceptional value to deliver world-class security capabilities.

The Information security cloud and applications architect is recognized as the enterprise SME for both cloud & application security and participates in strategic projects, providing consultative direction to multiple stakeholders in technical and management roles. In addition to providing enterprise strategy and direction for cloud and application security, the architect will execute a solutions architect role, planning and deploying key security technologies for the Cirrus organization.

The information security identity architect will report directly to the Senior Director, security architecture.

• Design a world-class cloud security architecture that includes detect and response capabilities and ensures controls parity between on-and offsite applications.
• Design a leading application security program highlighting critical security activities throughout the application lifecycle that ensure appropriate controls for sensitive information in alignment with business objectives.
• Work with multiple teams to collect use cases, requirements, and workflow.
• Design comprehensive cloud and application solutions using IAM technologies, SIEM and security monitoring, behavioral analytics, user profiling technologies, application scanning, penetration testing, and other technical means as appropriate.
• Maintain awareness of industry trends; participate in industry forums, events, and conferences; and develop strategies and processes for rapidly integrating critical features into the enterprise.
• Lead and perform proof of concept evaluations of vendor technologies.
• Develop reference architectures for monitoring and response capabilities across a range of cloud and on-premises technologies.

• Basic Qualifications:
  
  Bachelor of Science Degree in a discipline related to information security, or High School Diploma/GED with 10 years Information Security work experience.
• Qualified candidates must be legally authorized to be employed in the United States. Does not anticipate providing sponsorship for employment visa status (e.g., H‑1B or TN status) for this employment position.

All your information will be kept confidential according to EEO guidelines.