Search for More Jobs
Forward this job to a friend
Apply by email without Registering
Apply by creating/using account
Please enter your registered email address, and we'll email you a link to reset your password right away.
Works in active partnership with business stakeholders and technical stakeholders (solution, infrastructure, and application architects) to perform security architecture risk assessments.
Develops security domain expertise and technical objectives that will enable successful and secure delivery of project and program goals, thereby supporting the growth and evolution of Client.
Ensures operational and incident trends in security are considered in developing security architecture requirements and recommendations.
Contributes to security architecture governance and a clear comprehensive security framework.
Promote those requirements through partnership with enterprise architecture, software development and IT governance functions.
Provides recommendations for advancing the enterprise security architecture practice, security policies, and security control standards to enhance operational practices.
Inspires innovation, and technical leadership with peers through the use of recognized architectural models such as TOGAF, SABSA and ITIL.
Keep current with security technologies and make recommendations for use based on business value
Ensure execution of multi-year strategies and alignment of projects, tasks and framework to strategic roadmap.
Create and maintain enterprise security standards applicable to all technologies in the portfolio.
Architect, design secure solutions and define process for Client information security controls
Execute on infrastructure threat and vulnerability management processes
Define metrics and measurements for information security controls
Upgrades security systems by monitoring security environment, identifying security gaps, evaluating and implementing enhancements.
Work on achieving security compliance (PCI, FedRAMP, SOC 2 etc.)
Work on Incident Management remediation. Managing the lifecycle of all incidents.
Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.
Provide Security consulting on security related issues.
Participate in security RISK assessment and closing security gaps.
5 or more years of experience providing technical leadership and operational support for complex enterprise security projects/programs for large enterprise organizations
5 or more years of experience in network/applications/database security architecture, engineering, and technical oversight for large enterprise systems with PII/PHI/PCI/FISMA related data flows
Knowledge of infrastructure, application, and data security architecture best practices
Fluency with IT governance standards including NIST, COBIT, ISO 27001, OCTAVE, ITIL
Experience complying with regulatory guidance at the State and Federal level to include but not limited to SOX, HIPAA, GLBA, PCI-DSS, CMS/HHS and/or CFR Part 11
Experience executing security architecture processes within agile methodologies.
Specific experience leading programs from requirements through implementation.
Industry-specific certifications, including one or more of the following: CISSP, CISA, CISM, CGEIT or other industry specific certification
Bachelor Degree in engineering, computer science or related subject
10+ years' hands on experience in information technology.
Excellent communication skills, written and verbal. Quick thinker, experienced in unconventional problem solving.
Integrated into our shared values is Client's commitment to diversity. Client is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. This concept encompasses but is not limited to human differences with regard to race, ethnicity, religion, gender, culture and physical ability. Every individual at Client has an ongoing responsibility to respect and support a globally diverse environment.
Statement to Third Party Agencies
To ALL recruitment agencies: Client only accepts resumes from agencies on the Client preferred supplier list. Please do not forward resumes to our applicant tracking system, Client employees, or any Client facility. Client is not responsible for any fees or charges associated with unsolicited resumes.
Please Note: All Third Party Agencies that are on Scout are on NCRs preferred supplier list
Apply by creating/using account