Security Solutions Architect

MassMutual   •  

Springfield, MA

Industry: Accounting, Finance & Insurance

  •  

8 - 10 years

Posted 38 days ago

Description

Accountable for constructing sound, pragmatic and contemporary technology solutions for current and emergent business needs within the context of, and in order to advance, the technology and business strategic framework. Responsible authority that owns the solution or major components of the solution - actively steers its development, and manages any technical risk involved in its delivery. At a broader level the Solution Architect is involved in defining a technology capability and/or solution roadmap and determining transition states. The Solutions Architect works with the Enterprise Architect and Account Management for strategic direction (both conforming to, and helping to define) and plays a key role as a growth/innovation driver and advocate for good design where: The work focuses on the overall architecture, design, build, and integration of solutions or platforms spanning multiple technical and/or business capability domains with significant cost / strategic implications; Solution domain is highly complex; Business needs, concepts, and/or requirements are ambiguous, require definition and/or contain uncertain requirements that are likely to change, and/or require situational management of high technical delivery risk; Solutions that consist of unproven implementation technologies or multiple implementation techs at once within domains that experience rapid change.

Responsibilities:

Solution Architecture / Project Focus:

· Provides solution architectures and systems integration designs for modern information security capabilities covering all aspects of information risk & security including but not limited to application security, cloud and legacy infrastructure hardening, data loss prevention, advanced threat protection, endpoint and network security and identity & access management

· Authors architecture and design related artifacts including conceptual, logical and/or physical models, decision bulletins and architecture vendor solution technology patterns

· Supports the creation of reference architectures

· Participates on Requests for Proposal (RFPs) and selects best-fit solutions and technologies in partnership with business stakeholders, fellow architects, technical leads and on-site support engineers

· Consults with project delivery and engineering teams and solution providers to implement security frameworks and solutions consistent with technology roadmaps

· Perform new product or technology evaluations determine fit for requirements and ensure compliance with established security policies, nonfunctional requirements and best practices for the solution design

General / Leadership / Portfolio Focus:

· Works independently and with management on long-term, highly visible, complex projects involving multiple disciplines or business units

· Interprets business and technology requirements and threat drivers and develops practical security roadmaps

· Partners with Enterprise Information Risk Management (EIRM) solution strategists and business leads to define business outcomes for projects and work cell delivery activities

· Develops and update information security architecture patterns to serve as standards for other architects

· Researches new technologies and products using independent research organizations

· Advocates the use of emerging cyber security best practices, standard technologies and patterns, promoting automation approaches, developing strategies, and aligning practices with strategic initiatives

· Translates complex security concepts and challenges into business terms that are readily understood by colleagues

· Act as a key resource for resolution of unique or complex business problems

· Assist in rationalization information security technology portfolios

· Advances the interest of the company by serving on teams that are external to the organization when appropriate

· Drives continuous improvement and efficiencies beyond own scope of responsibility

· Partnerswith finance as part of the practical security roadmap development

BASIC QUALIFICATIONS:

· At least 8+ years of related experience including

o Development of security reference and solution architectures, standards, patterns and other blueprints

o Understanding of modern stack application development and deployment

o Supporting request for proposal, product evaluation and research and development processes

o Hands-on cloud security experience architecting, engineering or administrating for SaaS, PaaS, and IaaS (including AWS and Azure)

PREFERRED QUALIFICATIONS:

· Experience working with the Agile methodology and mindset

· Experience securing cloud delivery pipelines and infrastructure (e.g. SecDevOps)

· Experience conducting threat modeling exercises with operational and engineering teams

· Experiencewith The Open Group Architecture Framework

· Experience in enterprise information security programs

· Experiencewith using cost and finance factors are part of the product evaluation and architecture blueprinting process

R3907