find jobs
what:
where:
 
job title, keywords or company
city, state or zip code
Information Security Architect more...
Location:Boston, MA
Company:Boston Private
First posted:March 08, 2017
x

This position has the overall responsibility for creating and driving the Information Security Architecture for Boston Private. This includes the creation and ongoing management of the overall security structures with considerations for changes in regulatory, risk, information security and cyber landscapes. This position will build security into the foundation of the Institution's infrastructure and business units, as well as define architectural and engineering methodologies and spearhead technology research.

Responsibilities, Duties, and Accountabilities:

The Security Architect drives the security architecture for the Enterprise - leading design, articulating security standards, evaluating new security technologies, engineering, developing and tailoring security best practices and advocating for the implementation of solid security principles on projects across the entire business spectrum. Under the direction of the Chief Information Security Officer (CISO) the Security Architect partners with several functions including Information Technology, Risk Management, Project Management & Reporting Office, and Client facing business units. The Security Architect will collaborate closely with technical operations, Infrastructure and Business Leadership to ensure alignment and incorporation of security practices into Technology and Business processes across the Enterprise. Additionally, the Security Architect will:

  • Establish and maintain the Enterprise Security Architecture and supporting artifacts. Define the "What" and "Who" and work closely with the Information Security team to determine the most effective definition of "How"
  • Continuously monitor and improve the security posture of the Enterprise in conjunction with the Information Security Team. .
  • Align standards, frameworks, and security roadmap with overall business and technology strategy.
  • Identify and communicate emerging and current security threats.
  • Design security architecture elements to mitigate threats as they emerge.
  • Develop architecture roadmaps and solutions for delivering a set of new protection capabilities where several dependencies need to be managed.
  • Assess emerging technologies against security architecture to determine where they fill gaps, overlap with existing solutions or extend capabilities.
  • Engineer solutions that address the balance of business requirements and Information and Cyber security requirements
  • Serve as the enterprise security subject matter expert.
  • Provide advisory and consulting services as needed.
  • Review existing and proposed architectures, identify security design gaps, and recommend changes or enhancements.
  • Develop, document, and participate in solution architecture design and subsequent projects Lead security efforts assisting with the integration and initial implementation of solutions.
  • Ensure security architecture, regulatory and best practice compliance requirements.
  • Stay abreast of new security technologies and integrate into security architecture design when appropriate.
  • Coach and mentor others in the development of security management capabilities, experience, and advanced skills.
  • Represent security needs in the System and software Development Life Cycle (SDLC) and overall lifecycle for information and assets.

    Qualifications:

  • Ability to inspire teams to be innovative in developing new ideas and solutions.
  • Experience architecting security solutions for hybrid infrastructures.
  • Exceptional communication skills across a diverse audience.
  • Strong critical thinking and analytical skills; demonstrated ability to identify risks associated with business processes, operations, information security programs, and technology projects.
  • Bachelor's degree (computer science, computer management, information technology focus etc.) or equivalent work experience.
  • 5+ years of experience with security architecture demonstrating solutions delivery, principles and emerging technologies
  • 5+ years of experience designing and implementing security solutions
  • 5+ years of consulting and engineering experience
  • 5+ years of experience with cloud computing & security considerations
  • CISSP, CISM, CISA, ISSAP, ISSEP certifications or SANS related certifications
  • Expert leader in security best practices on current and emerging technology.
  • Experience with and knowledge of NIST, ISO27001, COBIT and COSO
  • Strong business acumen, able to work effectively at all levels across the organization.
  • Excellent interpersonal skills including ability to help business understand risk in business terms and make appropriate decisions.

    Equal Opportunity Employer

    Send this job to yourself or a friend.


    Please mention AllBostonJobs.com
    if asked how you found this job.
    »