Job Title: Senior Cyber Security Enterprise Architect

Type: Direct Hire

Location: 5 days Onsite (company policy) in any of the following locations:

• Miami, Florida
• Dallas, Texas
• Bentonville, Arkansas

Compensation: $230,000-240,000 + 15% Bonus

Job Overview:

The Sr. Cyber Security Architect in collaboration with VP Enterprise Architecture, under the general direction of the VP of Infrastructure & Security, will define the architecture and technical vision and strategy of cloud and on-premise security controls across the organization. Additionally, the candidate will operate at the intersection of Business and Technology to deliver security products that improve the security posture of our clients hybrid, multi-cloud environment.

This candidate will be responsible for articulating and translating the overall technical strategy, evaluating solutions and vendors. The security architect will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services.

• A career with purpose.
• A career built on making dreams come true.

Responsibilities:

• Develop and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers.
• Collaborate with the governance and sourcing team to develop security strategy and roadmaps based on sound enterprise architecture practices.
• Develop and maintain security architecture artifacts (models, patterns, templates, and standards) that can be used to leverage security capabilities in projects and operations.
• Partners with enterprise security & governance teams to assess and reduce cloud security risks
• Provides clear written and verbal consulting to projects about security architecture and risk management.
• Champions the implementation of industry leading security standards and best practices across the enterprise.
• Provides advice, analysis, and recommendation on the security products in the security space.
• Develop standards and practices for data encryption and tokenization within the organization based on the organization's data classification criteria.
• Conduct vulnerability assessments and other security reviews of systems, and prioritize remediation based on the risk profile of the assets
• Coordinate with DevOps teams to advocate secure coding practices and escalate concerns related to poor coding practices.
• Participate in security assessments of existing and prospective vendors, especially those with which the organization shares confidential, restricted, regulated or other protected data.
• Support the testing and validation of internal security controls.
• Coordinate with operational and facility-management teams to assess the security of operational technology.
• Collaborates to establish multi-cloud cybersecurity architecture with a focus on proactive threat detection, security control enforcement and incident response.
• Collaborates with enterprise and domain architects to develop secure solutions.
• Collaborate with SOC teams to define and enforce security standards.

Requirements:

• In depth understanding of cloud cybersecurity standards, frameworks and best practices.
• Exceptional communication and interpersonal skills - including negotiation, facilitation, and consensus building skills; ability to influence and persuade, without direct control.
• Progressive information security experience across various information security / information technology risk management domains such as but not limited to: application security, infrastructure security, identity and access management, vulnerability and cyber threat management, security architecture.
• Experience in identifying gaps in security architecture.
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner.
• Experience with various cloud service providers such as AWS or Azure across SPI (e.g. SaaS, PaaS, IaaS) models and environments (Public, Private, Hybrid).
• Bachelors or Masters Degree in Computer Science or a related discipline.
• At least 10-15 years of experience in the security aspects relating to multiple platforms, operating systems, software, communications, and network protocols, or an equivalent combination of education and work experience.
• At least 5 years of experience designing, architecting and securing IaaS, Pass, and SaaS cloud deployments.
• Certifications should include CCSP, CISSP, CCSK, and/or other cloud vendor specific certification.

Note from the Gravity IT Recruitment Team!:

• If you have a broad cybersecurity background across Network Security, Cloud Security, IAM, Security Engineering, etc. & are confident in both your technical breadth and ability to articulate strategic security initiatives to senior leadership AND engineers. This could be the job for you!
• This is a great opportunity if you have an extensive background in the consulting field and are seeking a chance to move internally with a Fortune 500 company to re-imagine and re-engineer their full cybersecurity landscape.