Director, Information Security Architect
United States
Applications have closed
Saama
Saama automates key clinical development and commercialization processes, with artificial intelligence (AI), machine learning (ML) and advanced-analytics, accelerating your time to market.
Title – Director, Information Security Architect The Information Security Architect (“ISA”) role is responsible for the planning, design, implementation and maintenance of the company’s security infrastructure and operations. This technical leader role, ensuring the confidentiality, integrity, and availability of the company's data and systems as documented in the Information Security Management System (“ISMS”) policy and procedures. The Information Security Architect is a critical role in safeguarding the company’s information assets, and associated infrastructure and applications from cyberattacks. The ISA is responsible for designing and implementing security technologies and procedures to ensure a robust security posture that protects the confidentiality, integrity and availability of the company’s data and systems. Key functions and responsibilities of the ISA role are:
- Collaborate with the company’s IT and Site Reliability Engineering (“SRE”) teams to ensure security controls integrate and operate seamlessly with current corporate and AWS cloud infrastructure and systems.
- Analyze business information security, privacy and compliance posture to identify and remediate security vulnerabilities and threats.
- Collaborate with the company’s IT and SRE teams to conduct security assessments and penetration tests to identify and remediate infrastructure and applications vulnerabilities.
- Oversee the implementation and configuration of security technical solutions and operational processes.
- Working with the company’s Chief Information Security Office (“CISO”), develop and operationalize security policies and procedures.
- Security Architecture Design: The ISA working with IT, SRE and R&D teams to conduct Security Technical Reviews (“STR”) to interpret security vulnerabilities analysis into actionable remediation plans. This involves designing and implementing secure network architectures, cloud service and deployment architectures, applications security functional requirements, identity and access management architectures, and associated access controls to mitigate security threats.
- Threat Analysis: The ISA working with the company’s Managed Security Service Provider (“MSSP”) to monitor, analyze and manage security vulnerabilities and emerging security threats.
- Security Operational Readiness: The ISA working with the MSSP’s security operations team, IT and SRE teams to document and implement managed defense response procedures (“runbooks”) to streamline security operations event triage, notification and escalation processes.
- Managing the company’s security Risk Registers: The ISA working with IT and SRE teams to proactively manage the company’s corporate and product infrastructure and applications security risk register. This includes:
- Maintaining a comprehensive and accurate inventory of the company’s hardware, software, applications and information assets.
- Through continuous monitoring of infrastructure and applications threats and vulnerabilities, identify, analyze, assess and develop risk mitigation responses and strategies.
- On a monthly basis, documenting and communicating the company’s infrastructure and applications security risks, identifying risk impact and likelihood, developing risk mitigation plans and assigning risk mitigation technical owners.
- Schedule monthly reviews with the company’s Quality Management, IT and SRE leaders to organization to ensure transparency of identified security risks.
- Required Certifications: CISSP or CISA certified
- Deep knowledge of IT and cloud infrastructure, platform and security systems, including network, IDS/IPS and Web Applications Firewalls.
- Deep knowledge of operating systems, applications and database security methods.
- Strong understanding of the ISO27001:2022 information security management framework and associated organizational and technical controls.
- Hands-on experience working with MSSPs.
- Hands-on experience configuring and managing a Rapid7 SIEM.
- Working knowledge of security testing tools BurpSuite, SonarQube, Nessus, Prowler and AWS ECR.
- Working knowledge of threat detection platforms CrowdStrike, AWS SecurityHub, GuardDuty and Inspector.
- Excellent analytical and problem-solving skills.
- Effective communication and interpersonal skills.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
10
0
0
Categories:
Architecture Jobs
Leadership Jobs
Tags: AWS Burp Suite CISA CISO CISSP Cloud Compliance CrowdStrike Firewalls IAM IDS IPS ISMS ISO 27001 Monitoring Nessus Privacy R&D Security assessment SIEM SonarQube Threat detection Vulnerabilities
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsInformation Security Manager jobsSenior Cybersecurity Engineer jobsInformation Security Specialist jobsSenior Network Security Engineer jobsIT Security Engineer jobsSecurity Consultant jobsSenior Penetration Tester jobsSenior Information Security Analyst jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsCyber Security Specialist jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsStaff Security Engineer jobsSystems Engineer jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Product Security Engineer jobsCyber Security Architect jobsSecurity Operations Analyst jobsSystems Administrator jobs
CI/CD jobsMalware jobsSaaS jobsEDR jobsForensics jobsSDLC jobsEncryption jobsIDS jobsSplunk jobsBash jobsIPS jobsTop Secret jobsRMF jobsIntrusion detection jobsOWASP jobsSQL jobsThreat detection jobsCompTIA jobsFinance jobsITIL jobsDocker jobsDoDD 8570 jobsActive Directory jobsCRISC jobsGIAC jobs
TCP/IP jobsVPN jobsHIPAA jobsTerraform jobsClearance Required jobsUNIX jobsIT infrastructure jobsBanking jobsMITRE ATT&CK jobsOSCP jobsSANS jobsJavaScript jobsPolygraph jobsCISO jobsDNS jobsSOX jobsSOC 2 jobsAnsible jobsCCSP jobsJira jobsGCIH jobsSOAR jobsIndustrial jobsData Analytics jobsCryptography jobs