×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Project Manager IT Consultant

Information Security Leader

Job in Portland, Multnomah County, Oregon, 97204, USA
Listing for: ZGF Architects
Full Time position
Listed on 2026-03-04
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Project Manager, IT Consultant
Salary/Wage Range or Industry Benchmark: 153000 - 178500 USD Yearly USD 153000.00 178500.00 YEAR
Job Description & How to Apply Below

Microsoft Defender E5 suite

ZGF is seeking an experienced Information Security Leader to continuously strengthen the firm’s security across all offices. This role is responsible for enterprise information security strategy, governance, risk management, compliance, and operational oversight. The individual will ensure that ZGF’s people, project information, client data, and intellectual property are protected in an increasingly complex and evolving threat landscape.

The position reports to the Director of Information Technology and works closely with firm leadership, project teams, and external security partners.

Role Purpose
  • Lead ZGF’s enterprise information security program.
  • Integrate a security mindset into the firm’s operations.
  • Protect project data, client information, and intellectual property.
  • Ensure compliance with appropriate frameworks (NIST 800‑171, CMMC, etc.).
  • Provide clear governance over risk while enabling innovative design and delivery.
Key Responsibilities Security Strategy & Governance
  • Develop and maintain a firmwide information security strategy aligned with ZGF’s business objectives and risk tolerance.
  • Translate the strategy into clear priorities, structured initiatives, and outcomes.
  • Present quarterly updates to leadership on security posture, risks, and priorities.
  • Serve as the firm’s authoritative voice on information security matters.
  • Develop and document an information security program.
Risk Management & Compliance
  • Lead compliance related to NIST 800‑171, CMMC, and other client-driven requirements.
  • Oversee governance tools and compliance platforms currently in use.
  • Conduct and oversee risk assessments, penetration testing, and vulnerability management programs.
  • Ensure appropriate controls are documented, tested, and maintained.
  • Coordinate cyber insurance requirements and external audit preparation.
Security Operations

ZGF’s current stack includes multiple security tools and managed services, including:

  • Fortinet perimeter and network controls
  • Microsoft Defender E5 suite
  • Arctic Wolf MDR/SOCaaS
  • Identity governance via Entra
  • Endpoint management via Intune/MEM
  • KnowBe4 Security Awareness
The Leader Will
  • Evaluate, rationalize, and optimize ZGF’s security stack to minimize redundancy and ensure layered, well-integrated protections aligned with business risk.
  • Provide leadership and oversight of all security operations.
  • Coordinate closely with external MSSPs.
  • Oversee incident response, escalation, and post‑incident analysis.
  • Strengthen disaster recovery and business continuity plans.
Identity & Access Governance
  • Oversee firmwide identity and access management practices across hybrid AD / Entra environments.
  • Enforce least privilege and Zero Trust principles.
  • Govern privileged access, role‑based access control, and MFA enforcement.
  • Coordinate identity lifecycle integration with HR and IT systems.
Culture, Awareness & Training
  • Lead firmwide security awareness initiatives.
  • Strengthen a culture of accountability and vigilance without impeding design productivity or creativity.
  • Ensure communication of risks and policies in language accessible to non‑technical staff.
Collaboration
  • Collaborate closely with:
    • Director of IT
    • Firmwide Technology Team
    • Operations Committee
  • Build trusted relationships with leaders across the firm to infuse security best practices into everyday operations.
Qualifications
  • 8–12+ years of experience in security, IT infrastructure, or related leadership roles.
  • Demonstrated experience managing enterprise security programs.
  • Demonstrated expertise with NIST 800‑171, CMMC, and related frameworks.
  • Experience working with MDR/SOC providers and enterprise security tooling.
  • Strong executive communication skills.
  • Ability to balance risk mitigation with operational and design needs.
  • Eligibility to maintain a T3 Secret DoD Personnel Security Clearance preferred.
Base Salary Range

$153,000/yr – $178,500/yr depending on skills and experience.

Benefits

ZGF Employees Enjoy Medical, Dental and Vision coverage with a generous employer contribution, HSA with employer contribution, 401k with employer match, 4 weeks of PTO and 10 paid holidays per year, paid parental and family leave programs.

Apply With
  • Cover letter
  • Resume

We know that great…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search