Assoc Director, IT Architecture

About The Position

Requirements

• Strong, track record of designing secure architectures for complex solutions and an ability to deliver results through partnering with stakeholders in IT and the business
• Solid understanding of "Cloud Architectures" (e.g., SaaS, PaaS, IaaS) and the ability to address the unique considerations of secure Cloud computing (including effective monitoring)
• Strong experience with mid/large global enterprises with large geographical topologies
• Working knowledge of IT processes (i.e., ITIL) including incident, problem, defect, change and release management
• Knowledge of current Department of Justice (DOJ) technical security and Transfer standards.
• Broad understanding of security domains including governance, risk management, audit and monitoring, cryptography, data protection, network security, vulnerability management, and incident response
• Experience aligning technical solutions with regulatory and compliance requirements, including working with Legal, Compliance, and Procurement functions
• Strong Knowledge of IS and Privacy Frameworks/standards such as SSAE16 Type II, Safe Harbor, ISO/IEC 2700x series, NIST 800-53, COBIT, HITRUST, HIPAA, PCI etc.
• Ability to translate business strategy, regulatory requirements, and risk posture into actionable security architectures, roadmaps, and multi-year plans
• Experience driving end-to-end solution lifecycle execution, including architecture, design validation, implementation support, testing, and operational rollout
• Ability to identify gaps, risks, and deficiencies in the current environment and develop pragmatic, prioritized remediation strategies
• Exceptional interpersonal skills in areas such as teamwork, facilitation and negotiation along with demonstrated ability to communicate effectively and influence technology decisions at all levels (from senior IT and business management & leaders to technical contributors & staff)
• Strong verbal and written communication skills
• Skilled at translating complex technical concepts into business-relevant outcomes and decisions
• Ability to document processes, architectures, and requirements in a structured, consumable manner
• Bachelor's degree in computer science, MIS, CS or other IT related major
• 10 or more years of experience in IT security, privacy and risk management domains
• Information Security Certifications (CISSP, etc.) or other related security certifications

Nice To Haves

• Prior working experience in a pharmaceutical company is a big plus
• Highly organized, results-oriented and attentive to details, self-motivated, proactive, independent and responsive – requires little supervisory attention

Responsibilities

• Understand, advocate, and influence alignment with business and IT strategy, ensuring security architecture supports enterprise objectives
• Analyze business context, trends, and strategic drivers to translate requirements into appropriate technical architectures, security strategies, and multi-year roadmaps
• Lead requirements gathering, documentation, and traceability for strategic initiatives (e.g., DSP) ensuring alignment between business needs, technical design, and regulatory/compliance requirements
• Serve as the primary SRC representative and interface for assigned initiatives, including participation in cross-functional program forums (e.g., PM calls), to ensure alignment and continuity across architecture, development, and delivery activities
• Partner with development, testing, and operations teams to support the end-to-end solution lifecycle, including design validation, implementation support, process documentation, training, and rollout of security and procurement-related capabilities
• Act as a key liaison with Legal, Compliance and Procurement stakeholders to ensure systems, processes, and tools align with regulatory obligations and evolving policy requirements
• Research emerging security technologies and industry trends to support continuous security enhancement and innovation efforts
• Analyze the current technology environment to identify critical deficiencies, risks, and improvement opportunities, and recommend pragmatic solutions
• Create and deliver clear, executive level presentations to articulate architecture strategies and ensure alignment with Department of Justice (DSP) security standards
• Help define and maintain the principles that guide DSP technical architecture decisions, standards, and tradeoffs across the enterprise
• Lead and facilitate the evaluation, selection, and standardization of security technologies, including defining implementation patterns and best practices
• Consult on solution architecture for in-scope initiatives to ensure compliance with DSP security architecture standards and enterprise guardrails
• Review and assess existing security solutions for effectiveness and efficiency, and develop strategies to enhance alignment with current DSP standards
• Participate in security incident investigations as needed, providing architectural guidance and root cause insight
• Support internal and external audits, penetration testing, and vulnerability assessments by contributing to responses and recommending risk mitigation actions
• Assist in developing, formalizing, and maintaining security policies, procedures, and technical standards, and support monitoring and enforcement of compliance

Benefits

• company-sponsored medical, dental, vision, and life insurance plans