Enterprise Security Architect POST NUMBER: 405449

Richmond, VA, US Hybrid
March 26th, 2024
$ 100000.00 - 180000.00 yearly
direct hire
Apply return to results

Job Summary:

  • Develop and maintain an enterprise-wide security architecture strategy aligned with business goals and objectives.
  • Evaluate and recommend new security technologies and tools to enhance the overall security posture. Stay current on emerging information security technologies and industry best practices.
  • Collaborate with executive leadership to ensure alignment of security initiatives with overall business goals.
  • Understand complex attacks, leverage threat intelligence, and employ analytics to enhance the enterprise security posture
  • Understand the landscape of threats, their sources, methods employed and potential targets
  • Utilize threat intelligence to predict, detect and counteract threats before they compromise a system
  • Conduct risk assessments to identify and prioritize potential security vulnerabilities, threats, and risks.
  • Collaborate with other departments to analyze and assess the impact of security threats and vulnerabilities.
  • Develop risk mitigation strategies and implement security controls. Ensure that risk management practices align with industry best practices and compliance requirements.
  • Ensure compliance with relevant laws, regulations, and industry standards. Participate in audits and regulatory assessments.
  • Establish, maintain, and audit cyber security guidelines, standards, policies and procedures.
  • Coordinate with other IT and business units to integrate security into daily operations.
  • Ensure compliance with industry regulations and standards (e.g., GDPR, HIPAA, ISO 27001).
  • Provide guidance on security best practices to ensure compliance to standards and best practices.
  • Lead and contribute to security awareness programs to educate employees about security policies and best practices.
  • Mentor and train on security best practices to insure a focus on security across the enterprise.
  • Collaborate with training teams to develop and deliver security training programs.
  • Develop and maintain an incident response plan.
  • Coordinate and participate in security incident response activities.
  • Conduct post-incident assessments to improve incident response capabilities.
  • Work closely with other IT teams, such as network, infrastructure, and application development, to integrate security into their processes.
  • Collaborate with external vendors and partners to ensure security requirements are met.
  • Regular attendance is required.
  • This is not an all-inclusive list of job requirements and/or duties and may not contain all mental and physical capabilities necessary to perform the job at all times due to circumstances. Operational, safety and other needs may require the employee to perform any and all other duties as assigned. Employees are expected, and must be able to perform all such duties and tasks.
  • Bachelor's degree, or relevant work experience required in Information Security, Cybersecurity, Computer Science, or a related field. Master’s degree preferred.
  • 5 or more years of cyber or information security experience, with a focus on security architecture within complex, diverse enterprise environments required.
  • 4 or more years of experience in software development, infrastructure engineering, technical architecture, or similar discipline required. 5 to 9 years preferred
  • Strong working knowledge of firewalls, VPN, routers, servers, zero-trust technology, WAF, API Gateways and IDS/IPS, network access controls, DevSecOps, and network segmentation required.
  • Strong leadership and influence skills
  • Must be able to present to all levels of management & executive leadership, and communicate effectively to technical and non-technical individuals
  • Knowledge of and experience applying cryptography, encryption, public infrastructures (PKIs), including digital signatures and certification authorities (CA), required
  • Must be experienced with multiple platforms, including Windows, UNIX, and Linux, containers, VMs, hybrid cloud/on premise/cloud (AWS, Azure, GCP) environments, and end user/mobile devices (Windows, IOS, Android)
  • Experience with authentication technologies - multi-factor authentication, SAML, OIDC, tokens, IAM/IGA, PAM preferred
  • Security related certifications, such as – CISSP, CEH, CISM, CRTSA, CRISC, CISSP-ISSAP, CSSA, AWS Certified Security or Microsoft Certified: Azure Security Engineer Associate preferred.
  • Outstanding influencing and consensus building skills
  • Ability to conduct technological analyses and research
  • Leadership, mentoring, coaching and role model skills
  • Strong communication, teamwork and collaboration skills required to evangelize technology subjects across all levels of the organization
  • Seasoned in managing tradeoffs and risks, adapting to change & uncertainty and making recommendations with imperfect information
  • Exceptional analytical and critical thinking skills
  • Strategic thinking and time management skills
  • Must be able to comply with all company policies, rules, procedures and Code of Conduct
  • Must be able to interact well with others
  • Must be able to work independently, or in a team setting
  • Must be capable of working under tight time constraints in a high volume environment with multiple priorities
  • Responds well to questions; Ability to read, interpret and comply with written information and documents such as safety rules, operations / procedure manuals and maintenance instructions with a high comprehension and concentration level to include the ability to meet deadlines
  • Must pass a pre-employment drug screen, random drug and/or alcohol tests, and will be subject to a criminal history background check
  • Must be authorized to work in the United States

Vaco values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.

EEO Notice

Vaco is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.

Vaco LLC and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco LLC and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .

Vaco also wants all applicants to know their rights that workplace discrimination is illegal.

By submitting to this position, you agree that you will be giving Vaco the exclusive right to present your as a candidate for the foregoing employment opportunity. You further agree that you have represented information about yourself accurately and have not affirmatively misrepresented your qualifications. You also agree to maintain as confidential, to the fullest extent permitted by law, any information you learn from Vaco about the position and you will limit disclosure of information about the position only to the extent necessary to perform any obligations in furtherance of your application. In exchange, Vaco agrees to exercise reasonable efforts to represent you through all solicitation, job screening and resume dispersal.

Privacy Notice

Vaco LLC and its parents, affiliates, and subsidiaries (“we,” “our,” or “Vaco”) respects your privacy and are committed to providing transparent notice of our policies.

  • California residents may access Vaco’s HR Notice at Collection for California Applicants and Employees here.
  • Virginia residents may access our state specific policies here.
  • Residents of all other states may access our policies here.
  • Canadian residents may access our policies in English here and in French here.
  • Residents of countries governed by GDPR may access our policies here.

Pay Transparency Notice

Determining compensation for this role (and others) at Vaco depends upon a wide array of factors including but not limited to:

  • the individual’s skill sets, experience and training;
  • licensure and certification requirements;
  • office location and other geographic considerations;
  • other business and organizational needs.

With that said, as required by local law, Vaco believes that the following salary range referenced above reasonably estimates the base compensation for an individual hired into this position in geographies that require salary range disclosure. The individual may also be eligible for discretionary bonuses.

Apply return to results

Apply Now

Please ensure all fields have been filled.

Your Information

* = Required Field

Resume Upload*

Please note only files with .pdf, .docx or .doc file extensions are accepted.
Max file size: 512KB.
Please attach your resume, ensure it is in the correct format and smaller than 512KB.


Vaco LLC, and its parents, subsidiaries, affiliates, and assigns ("Company," "We," or "Us") seeks your consent to contact you with certain non-emergency, automated, autodialed, prerecorded, or other telemarketing phone calls, emails, or text messages under the Telephone Consumer Protection Act (TCPA), Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM) and relevant state law.