Information Security Architect

Location: San Francisco, CA
TITLE: Information Security Architect
LOCATION: San Francisco, CA
  • Responsible for designing, engineering and administering a full range of IT security systems including architecting, designing, approving, reviewing, and auditing all of the information and physical security (as it relates to information technology) solutions and overall security environment.
  • The Security Architect is responsible for ensuring that secure practices and procedures are designed and implemented, makes final decisions on specialized information security technologies and/or design of particular information security systems and/or environments, and works with senior management to establish future information security and technical direction for systems.
  • The IT Security Architect may provide program and project oversight and management and are the final level of internal problem resolution for information security systems issues for internal and external customers. 
  • Proactively protect the integrity, confidentiality, and availability of information technology resources by:
  • Responding in a timely manner to a loss or misuse of information technology assets.
  • Participating in investigations of suspected information technology security misuse or in compliance reviews as requested by auditors.
  • Communicating unresolved information technology security exposures, misuse, or noncompliance situations with appropriate management.
  • Serve as primary architect to design and review information security solutions.
  • Document security architecture and infrastructure.
  • Advise Information Technology Governance on technologies, practices, and policies that can mitigate security issues.
  • Manage or oversee projects and/or programs.
  • Provide technical leadership to section; lead project teams, train, and guide and mentor staff.
  • Monitor VPNs, server logs, firewall logs, intrusion detection/prevention logs, network traffic and other security systems for unusual or suspicious activity. Interpret activity and implement plans for resolution.
  • Work with Network Engineering, Network Operations and other groups to manage connection security for local area networks, wide area networks, Web sites, intranets/extranets/portals, and e-mail communications.
  • Plan, design, and implement security systems and their corresponding or associated software, including firewalls, VPNs, intrusion detection/prevention systems, cryptographic systems, biometrics, anti-malware vulnerability management and patch management software.
  • Work with VP Info Security and other staff to develop and oversee enforcement of IT security policies and procedures.
  • Design, perform, and/or oversee penetration tests to identify system vulnerabilities.
  • Designing and implementing disaster recovery plans.
  • Conduct research on emerging products, services, protocols, and standards.
  • Recommend and deploy additional security products and tools, or enhancements to existing tools, to detect violations of network security measures.
  • Other duties as assigned.
  • 4+ years of experience directly related to information technology security. This experience should include active participation in security programs and processes that have contributed to the development and administration of an organization wide IT security architecture.
  • Bachelor’s degree in Computer Science, Engineering, Business, or related discipline is desired.
  • Demonstrated experience with network and IT security components, including firewalls, intrusion detection systems, anti-malware software, data encryption, VPN’s, vulnerability scanners, server operating systems, and other industry-standard techniques and practices.
  • Knowledge of applicable laws and practices relating to information privacy and security.
  • Knowledge and understanding of current security standards and regulations such as ISO 17799, COBIT, NIST, ITIL, and HIPAA, etc.
  • The demonstrated ability to apply analytical and problem-solving skills to information security and privacy issues.
  • Ability to conduct research into security issues and products as required.
  • Ability to effectively communicate both verbally and in writing to both technical and non-technical staff on issues of information security.  The ability to write documents ranging from formal and informal reports, system documentation, and training materials. 
  • Must be able to prepare these materials with limited advance notice.
  • The ability to work independently with limited supervision and limited direction.
  • The demonstrated ability to work effectively in a collaborative team environment.
  • The ability to prioritize and execute tasks in crisis situation.
  • The demonstrated ability to apply effective organizational skills and excellent attention to detail.
  • Advanced knowledge of current project management principles, processes, methodologies and tools for information technology projects
  • Expert knowledge of compliance auditing and evaluation.
  • The ability to provide support after normal business hour as needed.
  • CISSP, CISM, ISSAP certification desired
  • Certification in operating system, directory services, firewall, VPN, router and/or other technical areas desired
  • Certification in project management would be a plus
this job portal is powered by CATS