This site uses cookies. To find out more, see our Cookies Policy

Information Security Architect in Richmond at Vaco

Date Posted: 12/3/2018

Job Snapshot

Job Description

**U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time.**

Our client is looking for highly technical senior information security professional to serve in the role of Information Security Architect. The successful candidate will have at least 10 years' experience working in information technology with at least 5 years direct experience working with information and cyber security. This is a technical position that is responsible for technical design of information security systems as well as designing security integration.

Key Responsibilities:

Information Security Architecture, Systems Design and Implementation

  • Develop the cyber security posture and lead continuous evolution of capabilities to protect and preserve critical information.
  • Conceive, architect, and direct implementation of the systems and processes that provide the detective, preventive and corrective infrastructure controls for operating environments.
  • Own the strategic vision for company infrastructure security architecture, including policy and frameworks, and ensure that they are aligned with overall business, IT, and operational strategies.
  • Develop and maintain information security architectural goals and roadmap.
  • Support secure development lifecycle practices that emphasize early security design review to ensure that rapid iteration stays firmly planted in a strong security foundation.
  • Be the subject matter expert and lead for technical design of information security systems and architecture.
  • Perform ongoing evaluation and assessment of business need for information security systems and make needed recommendations to change architectural roadmap.
  • Develop solutions by analyzing information requirements; determining systems architecture, components, and technologies; studying business operations and user-interface requirements.
  • Thorough knowledge of, and experience with industry best-practice approaches to information security, information assurance (e.g. ISO 27001, 27002) and risk management.
  • Confirms architecture capability and flexibility by developing analytical models; completing validation tests.
  • Test design features to determine success of design of solutions and impact to business needs.
  • Work with technology teams in Infrastructure, Software Engineering and Business Development to ensure that architecture goals are coordinated in all areas.
  • Remain current with information and cyber security technologies and trends.

Project Consulting

  • Provide consultative resource to project teams to ensure security architectural goals are being met
  • Participate in project initiation to provide mentoring and guidance on secure design

Team Improvement

  • Mentor and train staff on information security technologies and processes
  • Oversee Incident Response program, including training and regular testing
  • Participate in regular process improvement activities and operational metrics design and tracking

Information Security Technology Operational Support

  • Act as an escalation point for chronic and high impact security operations support issues

Minimum Requirements

  • 5 years of technical experience working in the Information and Cyber Security field
  • 10 years of information technology experience

Critical Skills

  • Experience leading multiple large projects, leading definition, selection and implementation of security tools, technologies and processes
  • Hands-on experience implementing and administering information security, infrastructure and software systems.
  • Experience evaluating potential solutions, selecting and recommending the best solution
  • Experience producing design documents that are used by others to effectively implement solutions
  • Experience designing and implementing security technologies, such as IDS/IPS, SIEM, access controls, encryption and forensic tools.

Additional Skills and Qualifications

  • Ability to analyze systems based on business and technical user stories/requirements in order to design solutions that best meet the overall objectives of stakeholders
  • Ability to strategically analyze and articulate risks, benefits and opportunities associated with a proposed design or solution.
  • Demonstrated ability to design and implement complex infrastructure, applications, networks and systems with the goal of meeting business and security objectives
  • Demonstrated ability to design modifications to existing systems that improve security without compromising business objectives
  • Ability to design complex information security systems that impact multiple domains across Service Operations and Software Engineering
  • Ability to review and mentor the work of others in evaluating business objectives, detailing security user stories and generating technical specifications
  • Champion information security throughout the organization
  • Ability to estimate total costs of proposed solutions, including effort, acquisition costs and on-going costs

Education

4-year degree in Computer Science/Engineering, Information Systems, or equivalent experience