Sr Information Security Architect Details

Golden 1 Credit Union - Sacramento, CA

Employment Type : Full-Time

Sr Information Security ArchitectSacramento, CA, USA Req #564

Friday, December 4, 2020


JOB TITLE: Senior Information Security Architect
DEPARTMENT: IT - Information Security
STATUS: EXEMPT
JOB CODE: 10046

GENERAL DESCRIPTIONThe Senior Information Security Architect continually works to secure the Golden 1 enterprise environment through the balance of meeting organizational needs while applying information security standards and methodologies. The Senior Information Security Architect will partner with key cross-functional team members including the Lead Architect, Marketing, IT, HR, Retail, Lending, Operations, Legal, Finance, and the Enterprise PMO to establish alignment between the information security strategy and business strategies. The architect will be accountable for designing, planning, implementing, and of security systems. Contributions towards the creation or maintenance of security standards, policies, and procedures. Daily responsibilities include interacting with Solutions Architects, IT Operations, Business Owners, External Partners, and Project Management teams to ensure operational availability, perform design initiatives to enable new services and documentation of highly complex technical environments. All work is performed in a 7x24x365 high-availability environment. The Senior Information Security Architect is the subject matter expert for Information Security with a strong understanding of IT infrastructure and business acumen at Golden 1. Candidates must be well versed in Information Security Governance practices and technologies used.

A successful individual in this position will have a proven track record of influencing organizations and working directly with internal customers to drive a mutually valued partnership between information security and our Business teams, designing and delivering modern and cost-effective information security solutions, ensuring information security is aligned to and supporting all business teams.

TASKS, DUTIES, FUNCTIONS
  • Applies advanced IT architecture concepts to function as the highest level technical expert.
  • Evaluate partner supplied products to ensure that any solution fits with the Credit Union's strategic direction and security goals. Often serves as consultant to management.
  • Ensure products are built and sustained with security and compliance by design
  • Actively engaged with the architecture and planning of enterprise IT infrastructure as well as information security roadmap, up to and including the most complex and advanced implementations, from conception to post deployment. Works with peers across all technology teams to plan technology roadmap
  • Design capability should extend to other relevant technical areas, such as Server, Storage, Cloud, Database, and Networking
  • Ensures standards and framework compliance by providing well-documented procedures, security models, and information security diagrams. Participates in the engineering review of all critical system designs and provides technical guidance in the selection and implementation processes. Works with peers across all technology teams to plan technology roadmap
  • Strong ability to analyze root cause for technical issues, and design and put in place measures and methods to mitigate future occurrences (i.e. system and process improvement to prevent reoccurrence of problems).
  • Participates as a SME in technical architecture and design review sessions and project presentations. Leads presentations for specific projects or initiatives
  • Effectively communicates with credit union strategic partners and solution vendors to assist in matters of technical support. May need to manage the installation and deployment of new technologies and solutions as they arise.
  • Evaluates and suggests new methodologies that may improve the security posture of the credit union and manageability of appropriate systems. Maintains plans for the growth or replacement of technologies as they are needed
  • Creates design documentation and runbooks for new and existing platforms as needed for knowledge transfer to other staff.
  • Continually evaluates systems and solutions to ensure they maintain the functionality and compliance goals established by the Credit Union
  • Works with all staff to educate and train in the use of new processes and technology
  • Document data flows of sensitive and confidential information within the organization (e.g., PII or NPI) and recommend controls to ensure adequate protection via a cost benefit analysis.
  • Maintain a thorough understanding of state and federal laws and regulations related to credit union compliance including bank secrecy and anti-money laundering laws appropriate to the position,
PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASKS
  • Effective oral and written communication skills required to interpret, resolve, and document networking problems.
  • Must possess sufficient manual dexterity to skillfully operate an on-line computer terminal and other standard office equipment, such as financial calculators, personal computer, facsimile machine and telephone.
ORGANIZATIONAL CONTACTS & RELATIONSHIPS
  • INTERNAL: All levels of staff and management.
  • EXTERNAL: Vendors and Strategic Business Partners.
QUALIFICATIONS
  • EDUCATION: Bachelor’s degree in Computer Science, Management Information Systems or comparable discipline preferred. Additional work experience may be considered in lieu of a 4 year degree.
  • EXPERIENCE: Minimum of ten years of experience in a senior level information security role. Minimum of three years’ experience in managing complex projects.
  • KNOWLEDGE/SKILLS:
    • Ability to elicit and communicate technical and non-technical information in a clear and concise manner
    • Demonstrate comprehensive understanding of how system management actions impact other systems, system users and dependent/related functions
    • Advanced knowledge of security best practices and policies including demonstrated experience securing complex systems
    • Demonstrate comprehensive understanding of Data Loss Protection, MITRE ATT&K Framework, Cybersecurity Governance, and Cyber Risk Mitigation in an enterprise environment.
    • Overall understanding of Microsoft O365 security and related products
    • Ability to prioritize and evaluate proposed projects
    • Ability to write clear, concise and comprehensive technical documentation, reports, and support documentation.
    • Demonstrate strong aptitude to work effectively and support others in an environment of continuous change.
    • Conceptual subject matter expert with Firewalls, WAF, IDS/IPS, VPN, Vulnerability Scanning, Endpoint Protection, encryption network segmentation, tunneling, filtering, Load Balancing, SIEM, Access Policy Manager, SAML/SSO and other network technologies
    • Ability to work effectively independently and with departmental, other credit union staff, strategic partners and vendors while displaying a courteous and professional attitude at all times.
    • Ability to manage meetings, developing agendas, and coordinating participants to focus attention to the agenda.
    • Ability to deliver organized oral presentations designed to effectively communicate in verbal form.
    • Add comments about NIST CSF, CIS Top 20, OWASP
PHYSICAL REQUIREMENTS
  • Prolonged sitting throughout the workday with occasional mobility required.
  • Corrected vision in the normal range required to configure, test, and troubleshoot network server hardware and data.
  • Hearing within normal range. A device to enhance hearing will be provided if needed.
  • Lift and carry communications equipment and computer hardware weighing up to fifty pounds as may be required.
  • Occasional movements throughout the department daily to interact with staff, accomplish tasks, etc.
  • Availability for emergency and on call duty 24 hours a day, 7 days a week, as needed.
  • Occasional travel may be required.
  • May work additional work hours to accomplish tasks.
LICENSES/CERTIFICATIONS
  • Preferred (one or more): PCNSE, CISSP, CCSP, GDSA, GCED, Cisco CCNP, CCDP, or equivalent.
  • A valid California Driver’s License is required.
IND1

Other details

  • Job Family

    Senior Professional

  • Job Function

    Senior Professional

  • Pay Type

    Salary

Posted on : 3 years ago