Information Security Architect Job Description
Information Security Architect Duties & Responsibilities
To write an effective information security architect job description, begin by listing detailed duties, responsibilities and expectations. We have included information security architect job description templates that you can modify and use.
Sample responsibilities for this position include:
Information Security Architect Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Security Architect
List any licenses or certifications required by the position: CISSP, CISA, GIAC, CISM, MCSE, CCNA, CCSP, CCSM, SANS, SSH
Education for Information Security Architect
Typically a job would require a certain level of education.
Employers hiring for the information security architect job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Education, Information Security, Information Systems, Technical, Engineering, Information Technology, Business, Computer Engineering, Computer
Skills for Information Security Architect
Desired skills for information security architect include:
Desired experience for information security architect includes:
Information Security Architect Examples
Information Security Architect Job Description
- Provide guidance as a security consultant on new technology implementations
- Ensuring identified project security risks and issues are tracked to satisfactory resolution / conclusion
- Lead efforts to design solutions to meet business requirements connecting systems of high complexity with company-wide impact
- Help train and mentor other members of the team
- Evaluate and advise on projects with significant impact and where close coordination and communication is required with other IT teams
- Serve as information security subject matter expert, escalation point for other team members, security incidents and service requests
- Participate in a peer review process to ensure proposed changes are implemented following Company security standards
- Provide the highest level of support for troubleshooting incidents and update problem records in an incident tracking system
- Stay abreast of current security threats and new security technologies to integrate into security architecture design where appropriate
- Responsible for providing formal stand-up presentations to all levels of Bank management and to prepare detailed project proposals which include detailed justifications, cost estimates, manpower requirements
- Work closely with project managersand provider IT department to evaluate compliance with all HHS, CMS, and FDA requirements including but not limited to Meaningful Use security analysis and remediation requirements
- Extensive IT security experience including strategic guidance for improving IT provider security experience, broad knowledge of current security technology solutions, and the ability to observe and detect "rethinking routine" and "simplification" opportunities
- Strong interpersonal communication skills (verbal and written) and disciplined emotional intelligence
- Strong analytical skills (collaborate with technical architects and policy SME’s to resolve underlying issues)
- Clear understanding of HIPAA security rule
- Experience with HITRUST CSF
Information Security Architect Job Description
- 10% Provided input to the overall strategic direction to Management
- Duties include directly supervising staff, including interviewing, hiring staff and the termination of staff
- Builds and maintains a cloud security program specific to processing sensitive data in secured public cloud computing environments
- Maintains a governing role in the security review of all cloud technologies across IaaS, PaaS, and SaaS solutions
- Ensures consistent deployment and management of technical cloud security controls through the use of modern automation solutions
- Deploys solutions to automate discovery and compliance assessment for all cloud resources
- Provides subject matter expertise for securing all IaaS, PaaS, and SaaS solutions
- Cost management for cloud security program
- Utilize forensic tools like EnCase, FTK, and data discovery tools
- This position requires the application of interpersonal skills with the ability to foster and grow business relationships, and to communicate at all levels of the organization
- Expert understanding of networking hardware
- Architect virtualization based solutions of program and enterprise or operational scope
- Build and maintain a network of IT security provider contacts to stay abreast of IT industry security technology regulations and trends
- Be a SME on IT security policies and standards in IT provider environments and technologies including Electronic Medical Records (EMR), certified electronic health record technologies, health information exchanges, lab systems, medical devices, and clinical data and work flows
- Implementation experience with commonly accepted frameworks such as ISO 27001/27002, NIST, CMM
- Industry certification in security
Information Security Architect Job Description
- Application Development Security Life Cycle
- Infrastructure Security Controls
- Drives the definition and implementation of the cloud security model and architecture standards for AAG
- Integrates security requirements into technology lifecycle management and contributes to multiple large, complex application projects with cross-functional teams and business users
- Serves as the security expert in providing solution designs and technical consulting services in support of maintaining compliance with all applicable requirements including industry best practice, internal policy, the Payment Card Industry - Data Security Standard, state data privacy laws, and ISO 27001 controls
- Guides Security Engineers through the research and advocacy of new technologies, architectures, and security products that support security requirements for the enterprise and its customers, business partners, and vendors
- Develops requirements, along with business, application development, and infrastructure partners, to drive the engineering processes that produce secure solutions
- Is a thought leader who effectively communicates with and influences peers and leadership regarding optimum architectural approaches to meet business requirements, while managing security risk and maintaining compliance
- Analyzes and recommends strategy and direction to mitigate security risks within the organization
- Acts as a change agent through hands-on technical leadership
- Writing is clear, precise and well organized, using appropriate terminology and tone
- Strong project management discipline, research skills and multi-tasking abilities
- Identifies and resolves problems in a timely manner, anticipating barriers to execution
- Relates well to people, is approachable and builds effective relationships using diplomacy and tact
- Competency with scripting and/or programming (shell, ruby, python, perl, java, c)
- Hands-on Penetration Testing experience and ability to understand and communicate security flaws and vulnerabilities
Information Security Architect Job Description
- Mentors, coaches, and trains members of the Information Security team, the broader Information Technology Services team, and other technologists throughout AAG
- Drives continuous process and technology improvements
- Defining security requirements by evaluating business strategies and requirements
- The need is for a Sr
- The project will inventory all of the files on our networks, classify the file to understand where sensitive information is stored
- Implement controls on the files to ensure they are protected
- Remove (either directly or indirectly) files that are out of compliance with our information retention policy
- Prevent further non-compliance by implementing policies and practice to enforce and audit adherence
- We are looking for a strong technical lead to help lead the team build out our Unstructured File data analysis
- The candidate must have a solid System Architecture background (ideally in Information Security)
- At least 5 years of full-time work experience in information Security Architecture / Management
- Security / Architecture qualifications
- Typically background in technical IT roles such as IT architecture, with a clear and abiding interest in information security, offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively
- Information Security Technology – A strong working knowledge and ability to design security solutions covering deployment of critical security controls, such as Device / Software Inventory Systems, Secure Configuration Management, Continuous Vulnerability Assessment and Remediation systems, Malware Defences, Security Incident Event Management, Intrusion Prevention and Boundary Defence systems
- Bachelor's degree in Computer Science, Information Technology or equivalent educational or professional experience and/or qualifications
- Experience with common operating systems and server platforms
Information Security Architect Job Description
- In 2016 we implemented and are finalizing a hardware level crawling software to gather basic metadata about all of our network files
- In 2017 we are looking to move to the next steps and are currently looking at implementations that will leverage either Symantec DLP Data Insight/Discover or IBM’s Guardium FAM
- Provide mitigation strategies in the design and development of systems to ensure security risk is minimized by having familiarity with the current threat environment, how these threats can exploit known vulnerabilities
- Work with multiple hybrid cloud environment and vendors
- A member of the cloud security Architects responsible for the security aspects of the design throughout a project lifecycle and accountable for security solution integrity with the relevant to cloud environment and integration with it
- Maintain deep knowledge of cloud related solutions on every level IaaS, PaaS and SaaS, containers and other virtualization technologies and its related security trends
- Deep knowledge of security standards and practices that will assist in identifying business opportunities with emphasis on cutting edge security technologies
- Create and support POC/demos and present security solutions to client (Internal and external)
- You will perform routine line management and leadership of staff within the Information Security Management function
- You will provide leadership and strategic direction for the security management function, including planning and budgeting
- Excellent understanding of cloud security and experience with design and/or implementation of applications in the cloud
- Extensive knowledge of technical security controls and technologies
- Mediation skills – the ability to bring people with competing objectives together and reach appropriate compromises toward final solutions
- The capability to program or script in languages of the following languages (Python, Java, or Visual Basic)
- Be able to create native productivity aids and command scripts
- This incumbent is exposed to risk of electrical shock (data center environment)