IT Information Security Architect

Confidential Company  •  Washington, DC

Less than 5 years experience  •  IT Consulting/Services

Posted on 10/20/17 by Emily Russo
Confidential Company
Washington, DC
Less than 5 years experience
IT Consulting/Services
Posted on 10/20/17 Emily Russo

We are looking for IT Information Security Architect for our client in Washington, DC

Job Title: IT Information Security Architect

Job Location: Washington, DC

Job Type: Contract – 12 Months / Contract to Hire / Direct Hire

“US citizens and those authorized to work in the US are encouraged to apply. We are unable to sponsor H1b candidates at this time.”

Job Description:

Essential Job Functions:

  • Work with project teams to define security requirements for new systems in line with the enterprise information securityarchitecture.
  • Provide security design recommendations based on enterprise information securityarchitecture and solution patterns
  • Provide guidance and assist in the development of security standards for IT platforms in line with the information securityarchitecture
  • Maintain an up-to-date understanding of emerging trends in information securityarchitecture and apply new techniques and trends (in-line with overall information security objectives and risk tolerance of the CLIENT) to the CLIENT’s information securityarchitecture
  • Perform controls reviews and system assessments to develop risk profiles for IT systems and evaluate the efficiency and effectiveness of the IT control environment
  • Maintain impartiality around IT systems to produce unbiased reports on information securityrisk
  • Provide business units with recommendations to reduce information securityrisk within their areas
  • Identify efficiencies to improve the performance and responsiveness of the ITSSR information securityarchitecture function
  • Prepare and present security design and architectural review reports to system owners, business units, and other
  • Evaluate CLIENT current software security posture and propose mitigation and remediation plans to meet software security assurance requirements
  • Translate technical security deficiencies into business risks that are understandable by business stakeholders in order to get buy-in for securityinvestments

Educational Qualifications and Experience:

  • Bachelor’s degree in Computer Science, Information Systems, or a related technical field
  • Role Specific Experience: 2+ years of experience
  • Experience in providing guidance for data protection based on data sensitivity and associated business risk
  • Experience with enterprise securityarchitecture design and implementation for a financial services organization or other organizations with similar information security needs and requirements
  • Experience guiding project team remediating such vulnerabilities

Required Skills/Abilities:

  • Extensive knowledge of IT, enterprise architecture, software development life cycle, and information security platforms and applications
  • Knowledge of best practices and standards for enterprise securityarchitecture, specifically in the field of Identity & Access Management, Enterprise Content Management, Collaboration Tools, Service-Oriented Architecture, Cloud, Mobility, Data Analytics, and Web 2.0 related services
  • Practical knowledge of common Web vulnerabilities as per SANS 25 or OWASP Top 10 specifications

Certification Requirements:

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), and Information Systems Security Management Professional (ISSMP)

Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.