Enterprise Security Architect Job Description
Enterprise security architect
provides expertise in IT security systems including firewalls, intrusion detection/prevention systems, and security event consolidation/correlation & reporting systems, authentication systems and assesses system and network vulnerabilities and works with responsible groups to address them.
Enterprise Security Architect Duties & Responsibilities
To write an effective enterprise security architect job description, begin by listing detailed duties, responsibilities and expectations. We have included enterprise security architect job description templates that you can modify and use.
Sample responsibilities for this position include:
Designs, develops, reviews and implements security designs for new or existing technology system(s)
Security Architecture – Assisting in the development of an enterprise security architecture framework that addresses business needs
Analyze current technology environment to identify deficiencies and recommending solutions, staying abreast of emerging security technologies and trends and apply them where appropriate
Oversee and work with Engineering on the evaluation and selection of security related technologies and products
Serve as the custodian of the component architecture across the Site Portfolio
Ensure Infrastructure Solution Design and Deployments are in compliance with Enterprise Architecture Standards across all sites
Participants and Approves all Changes to the site Infrastructure via Change Management procedures
Serve as the information security architect at EA and work closely with our business and IT partners to identify and implement key programs and solutions
Establishing and maintain trust relationships with partner teams through active engagement, clear accountability and expectations, and frequent communication
Provide security thought leadership on core security questions facing the business – employee protection and IAM, data protection, device protection - based on leading security practices and experience
Enterprise Security Architect Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Enterprise Security Architect
List any licenses or certifications required by the position: CISSP, CISM, GIAC, VA, MCSA, GSEC, CCNA, CCSK, TOGAF, CCENT
Education for Enterprise Security Architect
Typically a job would require a certain level of education.
Employers hiring for the enterprise security architect job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Education, Engineering, Information Systems, Technical, Business, Information Technology, Management, Information Security, Architecture
Skills for Enterprise Security Architect
Desired skills for enterprise security architect include:
NIST
Cyber-security and IT processes / solutions
HIPAA
Security / risk control frameworks
Security and risk management trends emerging threats and vulnerabilities
Databases
Endpoint protection
Firewalls
Intrusion prevention systems
Managing security infrastructure —
Desired experience for enterprise security architect includes:
Have proven experience as a technical architect through all tiers (network, storage, backup, server, middleware and web/application) with the ability to understand security best practices and implications across all tiers
Must enable business-to-security alignment
Lead multiple technology groups to ensure that the application, integration, infrastructure, and security architectures are designed to meet evolving business requirements, standards for reliability, scalability and availability and align with the organization’s Technology Roadmap
Identify, recommend, and implement improvements to the existing security toolsets and processes
Communicate and work closely with our vendors to the review their security, to ensure all end points are covered and any gaps are understood
Partner with Global Engineering, Risk, and Architecture teams to ensure solutions are in line with Firm-wide Strategic Technology Roadmap, compliant to regulatory, legal and legislative requirements and are robust scalable and supportable
Enterprise Security Architect Examples
1
Enterprise Security Architect Job Description
Job Description Example
Our company is looking to fill the role of enterprise security architect. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for enterprise security architect
- Lead and assist in the evaluation, architecture, design, planning, implementation, and support of security solutions
- Provide guidance and architecture review of proposed security and business functions or practices
- Produce written technical reports and develop presentations on enterprise security approach and solutions
- Acts as Software Security resource on assigned projects
- Perform risk analysis relating to strategic technologies initiative
- Responsible for developing, recommending and executing strategic and tactical business and technology roadmaps in conjunction with business partners and strategy teams
- Identity and develop new architecture standards for secure cloud adoption
- Serve as information security subject matter expert
- Quantifies the needs of the local business to achieve value outcomes, champions required methodology, captures/reuses IP within the Area and shares best practices
- Strong leadership of Account & Delivery teams, driving high performance and collaboration between Area and Domain
Qualifications for enterprise security architect
- Knowledge and understanding of distributed system architectures, including networks within a global enterprise environment
- Participate in the development of requirements to facilitate both business vision realization and security architecture target state creation
- Understand the capabilities and limitations of the security components (e.g., technology, operations, and management)
- Influences product direction and integrates technology from a security and architectural perspective within the business environment
- Identify enhancements and gaps in architectural frameworks, standards and patterns to raise them for consideration for inclusion in the future versions
- Work effectively as a team, supporting other members of the team in achieving business objectives and providing client services, lessons learned and knowledge transfer
2
Enterprise Security Architect Job Description
Job Description Example
Our company is hiring for an enterprise security architect. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for enterprise security architect
- Design and maintain the cybersecurity architecture based on risk criteria by employing a Defense-in-Depth approach to segment and protect software and hardware assets
- Stay abreast of current IT and security industry trends, emerging security technologies, and security best practices throughout the energy industry
- Define technical architectures for security, infrastructure and applications
- This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud based applications, across all service models, (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS)
- Provide guidance to the NN architecture community with regard to the development and use of the various security capabilities
- Assists in planning sales strategy and collaborates with peers and partners to improve win and close rates
- Participates in organizational improvement initiatives
- Participates in pursuit color reviews and RFI responses
- Defines security architecture and executes Global Security Strategy initiatives, ensuring alignment with member firm requirements, technology industry standards, application technology roadmap, and business needs
- Directs and manages architecture development, review and approval processes and integration with other applicable organizational processes
Qualifications for enterprise security architect
- Open source other technologybackground experience
- Broad understanding of security functions such as Application Security, Identity Access Mgmt (IAM), and Governance Risk & Compliance (GRC)
- Ability to perform in a techno-functional role
- Experience of security hardening techniques and policy development, particularly operating system hardening
- Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, complete lack of criminal convictions ), and willing to undergo vetting and/or personality assessments to verify this if necessary
- History of successfully implementing enterprise security solutions (Veracode, Netskope)
3
Enterprise Security Architect Job Description
Job Description Example
Our company is hiring for an enterprise security architect. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for enterprise security architect
- Validate and test complex security architecture and designs to produce detailed engineering specifications for existing and proposed technologies
- Manage the current and future enterprise estate for BAT’s processes, information, data and applications
- Apply long-term vision, functional expertise and IT & FMCG industry knowledge to identify new opportunities that will bring about significant value to the organisation
- Design an enterprise architecture on the principles of re-use and complexity reduction
- The enterprise security architect will be required to translate complex security-related matters into business terms that are readily understood by colleagues
- The enterprise security architect must interpret business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers
- Demonstrate flexibility within a variety of changing situations, while working with individuals and groups
- Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts
- Draft security procedures and standards to be reviewed and approved by executive management and/or formally authorized by the VP of Information Security and Compliance
- Determine baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation, and identity and access management (IAM)
Qualifications for enterprise security architect
- 2+ years of experience designing solutions that comply with information security and privacy regulations
- 2+ years of experience with identity and access management solutions
- Master’s degree in computer science, or Master’s degree in engineering, or Master’s degree in management of information systems, or Master’s degree in related field
- Experience architecting and delivering data warehouses or marts, advanced analytic environments, business intelligence solutions, or data integration platforms
- Experience with tokenization and encryption solutions
- Hands-on experience with sensitive data detection and protection tools such as DataGuise
4
Enterprise Security Architect Job Description
Job Description Example
Our growing company is hiring for an enterprise security architect. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for enterprise security architect
- Ensure a complete, accurate and valid inventory of all systems, infrastructure and applications that should be logged by the security information and event management or log management tool
- Establish a taxonomy of indicators of compromise (IOCs) and share this detail with other security colleagues, including Information Security VP, directors, managers and analysts, counterparts within the network teams
- Coordinate with our future DevOps teams to advocate secure coding practices
- Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable
- Review network segmentation to ensure least privilege for network access
- Liaise with the internal audit (IA) team to review and evaluate the design and operational effectiveness of security-related controls
- Review security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics
- Liaise with other security architects and security practitioners to share best practices and insights
- Responsible for research and evaluation of new tools and technologies, and the individual is expected to stay abreast of new developments in the technology and retail industry
- Serves in capacity of technology advisory services for engaging with the business to "solve” business problems via technology and process innovation relative to IT capability requirements
Qualifications for enterprise security architect
- Hands-on experience with identity and access management solutions such as Ping Identity, Centrify, SailPoint, AWS IAM
- Experience with various tools and frameworks of the big data ecosystem across both open source and commercial distributions (MapReduce, YARN, Pig, Hive, HBase, Spark, Kafka)
- Experience operating in agile software development
- Hands-on experience in Amazon Web Services (AWS RDS, DynamoDB, Redshift, S3, EMR)
- Experience with NoSQL database technologies (MongoDB, Cassandra, HBase, Neo4J)
- Ability to work in a SecOps environment
5
Enterprise Security Architect Job Description
Job Description Example
Our innovative and growing company is hiring for an enterprise security architect. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for enterprise security architect
- Provide technology thought leadership - assessing priority of new project requests toward ensuring added value, promoting our business strategies and/or advancing our technology
- Lead and manage the development of Information Security Architecture, standards and design patterns through the management of a matrixed team for each of the technology areas
- Maintain an agreed infrastructure direction that is appropriate to XL Catlin's business needs and shapes infrastructure investment plans
- Support in the alignment of IT delivery against Enterprise Architecture direction
- Contribute to the IT strategy by bringing a knowledge of the current state and future vision of Infrastructure technology as it relates to the needs of XL Catlin
- Define and maintain security architecture framework and processes to enable CGI to develop, implement and measure security capabilities aligned with business, technology and threat drivers
- Develop strategies to address evolving threats to systems and data (advanced cyber-attacks, data exfiltration / leakage, information extortion, ) and define priorities for improvements to CGI’s security posture
- Ensure the development of security architecture artifacts and deliverables (models, templates, standards and procedures) that can leveraged by other CGI project & operations teams
- Lead the definition of CGI’s overall security roadmap (3-year) and support business planning, requirements and investment case definition to direct the implementation of security measures
- Review security technologies, tools and services and make recommendations for their use based on security, financial and operational criteria
Qualifications for enterprise security architect
- Extensive experience and domain knowledge in the areas of sensitive data detection and protection, identity and access management, and auditing of data access
- Hands-on expertise in big data, fast data and public cloud technologies for relational, non-relational and streaming data
- 4+ years of experience with Enterprise Security
- Detailed understanding of infrastructure concepts such as Networking, Storage and Compute/Hypervisor Architectures
- Familiarity with Cisco ACI
- Experience with Nexpose Rapid 7 and Nessus a plus