Information Security Architect Job Description
Information security architect
provides subject matter expertise on encryption, security controls, and secure design and programming practices across Verizon Media.
Information Security Architect Duties & Responsibilities
To write an effective information security architect job description, begin by listing detailed duties, responsibilities and expectations. We have included information security architect job description templates that you can modify and use.
Sample responsibilities for this position include:
Perform scanning and risk analysis for potential security issues
Lead security projects from conception to completion
Perform risk analysis and remediation recommendations in IT operations including network operations, systems engineering, change management, and general IT administration oversight
Design application security frameworks, assessment methodologies and perform automated application security testing procedures
Design, administer and maintain various technical security tools
Create and maintain security standards for IT infrastructure components
Plans and designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures hardware and software
Play an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned
Architect security strategy for mobile applications
Help design security architecture of DevOps lifecycle
Information Security Architect Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Security Architect
List any licenses or certifications required by the position: CISSP, CISA, GIAC, CISM, MCSE, CCNA, CCSP, CCSM, SANS, SSH
Education for Information Security Architect
Typically a job would require a certain level of education.
Employers hiring for the information security architect job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Education, Information Security, Information Systems, Technical, Engineering, Information Technology, Business, Computer Engineering, Computer
Skills for Information Security Architect
Desired skills for information security architect include:
Encryption
Hypervisors
Security issues
Databases
Techniques and implications across all existing computer platforms
Firewalls
Backup networks and media
Administrative
Agile based methodologies
Deep design review and Secure Development Lifecycle methodologies
Desired experience for information security architect includes:
Architect reusable solutions of program and enterprise or operational scope
Customize reusable solutions of program and enterprise or operational scope
Lead architecture team in architecture activities for complex, medium to large opportunity
Assess technical / business impact of multiple technologies/strategies
Knowledge and implementation experience of of Citrix XenDesktop, VMware View, and Quest VDI products
Knowledge and implementation experience with of VMware ESX, Microsoft Hyper-V, Citrix XenServer, and Quest Virtualization Solutions
Information Security Architect Examples
1
Information Security Architect Job Description
Job Description Example
Our growing company is hiring for an information security architect. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for information security architect
- Provide guidance as a security consultant on new technology implementations
- Ensuring identified project security risks and issues are tracked to satisfactory resolution / conclusion
- Lead efforts to design solutions to meet business requirements connecting systems of high complexity with company-wide impact
- Help train and mentor other members of the team
- Evaluate and advise on projects with significant impact and where close coordination and communication is required with other IT teams
- Serve as information security subject matter expert, escalation point for other team members, security incidents and service requests
- Participate in a peer review process to ensure proposed changes are implemented following Company security standards
- Provide the highest level of support for troubleshooting incidents and update problem records in an incident tracking system
- Stay abreast of current security threats and new security technologies to integrate into security architecture design where appropriate
- Responsible for providing formal stand-up presentations to all levels of Bank management and to prepare detailed project proposals which include detailed justifications, cost estimates, manpower requirements
Qualifications for information security architect
- Work closely with project managersand provider IT department to evaluate compliance with all HHS, CMS, and FDA requirements including but not limited to Meaningful Use security analysis and remediation requirements
- Extensive IT security experience including strategic guidance for improving IT provider security experience, broad knowledge of current security technology solutions, and the ability to observe and detect "rethinking routine" and "simplification" opportunities
- Strong interpersonal communication skills (verbal and written) and disciplined emotional intelligence
- Strong analytical skills (collaborate with technical architects and policy SME’s to resolve underlying issues)
- Clear understanding of HIPAA security rule
- Experience with HITRUST CSF
2
Information Security Architect Job Description
Job Description Example
Our company is growing rapidly and is looking for an information security architect. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for information security architect
- 10% Provided input to the overall strategic direction to Management
- Duties include directly supervising staff, including interviewing, hiring staff and the termination of staff
- Builds and maintains a cloud security program specific to processing sensitive data in secured public cloud computing environments
- Maintains a governing role in the security review of all cloud technologies across IaaS, PaaS, and SaaS solutions
- Ensures consistent deployment and management of technical cloud security controls through the use of modern automation solutions
- Deploys solutions to automate discovery and compliance assessment for all cloud resources
- Provides subject matter expertise for securing all IaaS, PaaS, and SaaS solutions
- Cost management for cloud security program
- Utilize forensic tools like EnCase, FTK, and data discovery tools
- This position requires the application of interpersonal skills with the ability to foster and grow business relationships, and to communicate at all levels of the organization
Qualifications for information security architect
- Expert understanding of networking hardware
- Architect virtualization based solutions of program and enterprise or operational scope
- Build and maintain a network of IT security provider contacts to stay abreast of IT industry security technology regulations and trends
- Be a SME on IT security policies and standards in IT provider environments and technologies including Electronic Medical Records (EMR), certified electronic health record technologies, health information exchanges, lab systems, medical devices, and clinical data and work flows
- Implementation experience with commonly accepted frameworks such as ISO 27001/27002, NIST, CMM
- Industry certification in security
3
Information Security Architect Job Description
Job Description Example
Our company is growing rapidly and is looking for an information security architect. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for information security architect
- Application Development Security Life Cycle
- Infrastructure Security Controls
- Drives the definition and implementation of the cloud security model and architecture standards for AAG
- Integrates security requirements into technology lifecycle management and contributes to multiple large, complex application projects with cross-functional teams and business users
- Serves as the security expert in providing solution designs and technical consulting services in support of maintaining compliance with all applicable requirements including industry best practice, internal policy, the Payment Card Industry - Data Security Standard, state data privacy laws, and ISO 27001 controls
- Guides Security Engineers through the research and advocacy of new technologies, architectures, and security products that support security requirements for the enterprise and its customers, business partners, and vendors
- Develops requirements, along with business, application development, and infrastructure partners, to drive the engineering processes that produce secure solutions
- Is a thought leader who effectively communicates with and influences peers and leadership regarding optimum architectural approaches to meet business requirements, while managing security risk and maintaining compliance
- Analyzes and recommends strategy and direction to mitigate security risks within the organization
- Acts as a change agent through hands-on technical leadership
Qualifications for information security architect
- Writing is clear, precise and well organized, using appropriate terminology and tone
- Strong project management discipline, research skills and multi-tasking abilities
- Identifies and resolves problems in a timely manner, anticipating barriers to execution
- Relates well to people, is approachable and builds effective relationships using diplomacy and tact
- Competency with scripting and/or programming (shell, ruby, python, perl, java, c)
- Hands-on Penetration Testing experience and ability to understand and communicate security flaws and vulnerabilities
4
Information Security Architect Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of information security architect. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for information security architect
- Mentors, coaches, and trains members of the Information Security team, the broader Information Technology Services team, and other technologists throughout AAG
- Drives continuous process and technology improvements
- Defining security requirements by evaluating business strategies and requirements
- The need is for a Sr
- The project will inventory all of the files on our networks, classify the file to understand where sensitive information is stored
- Implement controls on the files to ensure they are protected
- Remove (either directly or indirectly) files that are out of compliance with our information retention policy
- Prevent further non-compliance by implementing policies and practice to enforce and audit adherence
- We are looking for a strong technical lead to help lead the team build out our Unstructured File data analysis
- The candidate must have a solid System Architecture background (ideally in Information Security)
Qualifications for information security architect
- At least 5 years of full-time work experience in information Security Architecture / Management
- Security / Architecture qualifications
- Typically background in technical IT roles such as IT architecture, with a clear and abiding interest in information security, offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively
- Information Security Technology – A strong working knowledge and ability to design security solutions covering deployment of critical security controls, such as Device / Software Inventory Systems, Secure Configuration Management, Continuous Vulnerability Assessment and Remediation systems, Malware Defences, Security Incident Event Management, Intrusion Prevention and Boundary Defence systems
- Bachelor's degree in Computer Science, Information Technology or equivalent educational or professional experience and/or qualifications
- Experience with common operating systems and server platforms
5
Information Security Architect Job Description
Job Description Example
Our innovative and growing company is looking to fill the role of information security architect. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for information security architect
- In 2016 we implemented and are finalizing a hardware level crawling software to gather basic metadata about all of our network files
- In 2017 we are looking to move to the next steps and are currently looking at implementations that will leverage either Symantec DLP Data Insight/Discover or IBM’s Guardium FAM
- Provide mitigation strategies in the design and development of systems to ensure security risk is minimized by having familiarity with the current threat environment, how these threats can exploit known vulnerabilities
- Work with multiple hybrid cloud environment and vendors
- A member of the cloud security Architects responsible for the security aspects of the design throughout a project lifecycle and accountable for security solution integrity with the relevant to cloud environment and integration with it
- Maintain deep knowledge of cloud related solutions on every level IaaS, PaaS and SaaS, containers and other virtualization technologies and its related security trends
- Deep knowledge of security standards and practices that will assist in identifying business opportunities with emphasis on cutting edge security technologies
- Create and support POC/demos and present security solutions to client (Internal and external)
- You will perform routine line management and leadership of staff within the Information Security Management function
- You will provide leadership and strategic direction for the security management function, including planning and budgeting
Qualifications for information security architect
- Excellent understanding of cloud security and experience with design and/or implementation of applications in the cloud
- Extensive knowledge of technical security controls and technologies
- Mediation skills – the ability to bring people with competing objectives together and reach appropriate compromises toward final solutions
- The capability to program or script in languages of the following languages (Python, Java, or Visual Basic)
- Be able to create native productivity aids and command scripts
- This incumbent is exposed to risk of electrical shock (data center environment)