The Information Security Architect Senior secures information and data assets across the enterprise in accordance with defined organizational security requirements. Maintains and improves existing security architecture while providing strategic leadership to improve system protection and coverage. Leads the Information Security Architecture Team in developing and refining security policies and procedures.
•Collaborates with senior management to align security strategies with business requirements.
•Maintains regular communication with senior management to report on security needs, priorities, recommendations, risks and opportunities.
•Responsible for architectural oversight of all information security systems; contributes to the Information Security Program as well as resulting initiatives and roadmaps.
•Delivers strategic direction as well as technical expertise in information security management, infrastructure architecture and regulatory requirements.
•Leads the assessment of information security risks for vendors, platforms, applications and services for existing and new systems as part of the project initiation process.
•Assumes overall responsibility for establishing and updating internal security requirements, standards, policies and processes; maintains documentation on information security operations and process descriptions.
•Collaborates with business units, IT partners, Enterprise Risk Management and Compliance team members to support, remediate and plan for audit and certification requirements from various regulatory agencies.
•Provides leadership and guidance to the Information Security Architecture Team.
Education
Min/Preferred:
Education Level: 4 Year / Bachelors Degree
Description: Bachelor’s or Master’s Degree in computer science, information systems or other related field
Experience
Minimum Years of Experience:
Preferred Years of Experience: 10
Comments: 10 years of in-depth information security experience in infrastructure/network, on-premises applications, cloud-based services and multiplatform environments; or equivalent work and training experience.
Knowledge, Skills & Ability •Financial services industry experience preferred.
•5+ years of expertise in architecture and design of security standards and procedures development, security education, vulnerability assessments, risk analysis and compliance testing.
•Recognized Information Security Certification(s) are required, such as CISSP, CISM, CISA, CRISC, CCSK, CCSP, ITIL, AWS, AZURE, others.
•Knowledge of Compliance and Regulations (ISO, NIST, FFIEC, FDIC and PCI-DSS).
