Job Title: Information Security ArchitectJob Summary: The Information Security Architect is responsible for designing, implementing, and evaluating security mechanisms for network, host-based, and application security. This role focuses on ensuring the confidentiality, integrity, and availability of computing systems, including servers, networks, and workstations. The position involves supporting the organization's System Development Life Cycle (SDLC) by integrating information security best practices into system design, implementation, and compliance efforts. The Security Architect works to align security requirements with business processes and enterprise architecture, ensuring comprehensive protection against cybersecurity threats.
Education Requirements: - Preferred: Bachelor's Degree in Information Security, Computer Science, Information Systems, or a related field.
- Minimum: High School Diploma, GED, or equivalent.
Experience Requirements: - Minimum: 4 years of experience in information security or a related field.
- Preferred: 6 years of experience, including roles in security architecture, risk assessment, or compliance.
Certifications: - Preferred: Certified Information Systems Security Professional (CISSP), GIAC, or equivalent security certifications.
Key Responsibilities: - Security Architecture & Configuration: Develop and integrate cybersecurity designs for systems and networks that support multilevel security requirements. Ensure alignment with industry security frameworks and organizational cybersecurity guidelines.
- Risk Assessment & Compliance: Analyze IT security needs and recommend security mechanisms. Perform risk assessments on servers, workstations, and network devices. Conduct security reviews and develop risk management plans.
- System Configuration & Testing: Support the implementation of security controls within IT infrastructure. Identify attack vectors and mitigate risks to acceptable levels. Assist with security certification and accreditation processes.
- Audits & Remediation: Conduct security audits and assist with remediation efforts. Validate security measures for existing and new technology implementations.
- Consulting & Problem Solving: Provide security advisory services to enhance system security. Prepare reports, research security topics, and present findings to stakeholders.
- Incident Response: Assist in detecting and resolving security incidents. Contribute to process improvements for protecting critical information.
- Disaster Recovery Planning: Support the development of disaster recovery strategies to maintain system availability. Work with stakeholders to identify critical business functions and ensure resilient security architecture.
- Training & Awareness: Provide training on security best practices to IT staff and end users. Offer guidance on security methodologies and compliance requirements.
Additional Qualifications: - Strong analytical, problem-solving, and troubleshooting skills.
- Ability to develop reports, security plans, and technical documentation.
- Experience with security vulnerability assessments and risk mitigation strategies.
- Understanding of federal and state regulations related to data protection, including HIPAA, GDPR, and other compliance standards.
- Experience with network and system security audits, as well as application security assessments.
- Prior experience in healthcare IT security (preferred but not required).
- Background in system or network administration is a plus.
Core Competencies: - Communication: Effectively conveys technical and non-technical information to various stakeholders.
- Confidentiality: Maintains strict confidentiality regarding sensitive information.
- Teamwork: Works collaboratively with internal and external teams.
- Problem-Solving: Analyzes security challenges and develops effective solutions.
- Customer Service: Provides high-quality support and security guidance.
- Time Management: Prioritizes multiple tasks efficiently and meets project deadlines.
- Compliance: Ensures adherence to organizational security policies and regulatory requirements.
Work Environment & Physical Requirements: - May involve working around IT equipment and machinery.
- Ability to balance multiple priorities in a fast-paced environment.
- Occasional on-site presence may be required.
- Some positions may require travel or on-call availability for security incident response.
This role is ideal for professionals passionate about cybersecurity architecture, risk management, and regulatory compliance. If you have experience in designing secure systems and working within security frameworks, this opportunity offers a dynamic and impactful career path.
Please view our Privacy Policy.