Senior Security Architect

About the position

The position involves advising on policy, direction, and vision for critical enterprise IT and business domains, focusing on security initiatives for emerging technologies. The role includes assessing, planning, designing, and overseeing the implementation of security and compliance capabilities across company platforms, systems, and applications. It requires defining security requirements, conducting reviews to identify risks, and recommending enhancements to minimize security risks. The position also involves guiding security architecture activities globally and developing security architecture plans and roadmaps.

Responsibilities

• Advise on policy, direction, and vision for enterprise IT and business domains.
• Drive and design new security initiatives for emerging technologies.
• Assess, envision, plan, design, and oversee the implementation of security and compliance capabilities.
• Define security requirements and secure architecture blueprints.
• Conduct reviews of systems, platforms, and applications to identify security risks.
• Recommend architectural enhancements to minimize security risk.
• Provide guidance and assist in setting the vision for information security across the organization.
• Coordinate all security architecture activities globally and develop security architecture plans and roadmaps.
• Develop reference architecture and implementation patterns related to security solutions.
• Guide and review cross-program and cross-project security architecture strategies.
• Ensure conformance and compliance of projects with architectural security guidelines.
• Oversee newly implemented technologies and coordinate internal/external audits.
• Serve as the subject matter expert for international security regulated programs.
• Align new security initiatives with senior management.
• Identify, develop, implement, and maintain security processes to reduce risks and respond to incidents.
• Support the mitigation of significant security risks and design strategies to prevent loss of organizational assets.
• Advise senior management of changes in technical, legal, and regulatory areas impacting Information Security.
• Carry out risk assessments and ensure timely addressing of action items.
• Define Information Security metrics and report them to the steering committee.

Requirements

• Bachelor's degree in a quantitative or business field (e.g., statistics, mathematics, engineering, computer science).
• 4 - 6 years of related experience or equivalent experience.
• Experience with Telephony and AWS Connect.
• Contact Center Application background on implementing security access levels.
• Experience with Technical Security Assessments or Audits on infrastructure, applications, and platforms (NIST, SOX/SOC, etc.).
• Experience with security tools like Vulnerability Scanners.
• Experience with Security Information & Event Management (SIEM).
• Experience with IT as it relates to Managed Healthcare.
• CISSP or relevant security certification preferred.
• CompTIA Security+ Certification preferred.
• AWS/Azure Security Specialty preferred.

Nice-to-haves

• Intermediate ability to identify basic problems and procedural irregularities.
• Intermediate ability to work independently.
• Intermediate analytical skills.
• Intermediate project management skills.
• Demonstrated high level of accuracy under pressure.
• Excellent judgment and decision-making skills.

Benefits

• Competitive pay
• Health insurance
• 401K and stock purchase plans
• Tuition reimbursement
• Paid time off plus holidays
• Flexible work schedules (remote, hybrid, field, or office)