Director, Information Security Architecture and Solutions (Remote) - WashU IT

About The Position

Requirements

• Bachelor’s degree or combination of education and/or experience may substitute for minimum education.
• Relevant Information Technology, Including Managing Information Security Teams (7 Years)

Nice To Haves

• Master's degree
• Certified Information Security Manager (CISM) - Information Systems Audit and Control Association (ISACA), Certified Information Systems Architecture Professional" (CISAP) - International Information System Security Certification Consortium (ISC2), Certified Information Systems Auditor (CISA) - Information Systems Audit and Control Association (ISACA), Certified Information Systems Security Professional (CISSP) - International Information System Security Certification Consortium (ISC2)
• Analytical Problem Solving
• Coaching
• Cybersecurity
• Employee Development
• Employee Management
• Goal-Oriented
• Goal Setting
• Information Technology (IT)
• Information Technology Security
• Interpersonal Communication
• Oral Communications
• Problem Solving
• Project Administration
• Technical Projects
• Written Communication

Responsibilities

• Define and maintain the enterprise security architecture vision and roadmap in alignment with university strategy, IT standards, and clinical care, research, and teaching missions.
• Lead the Security Architecture and Solutions team, including recruiting, mentoring, performance management, and professional development.
• Contribute to information security program strategy and planning with the CISO and other security leaders.
• Develop and maintain security reference architectures, patterns, and design standards for on-premises, cloud, and hybrid environments.
• Partner with the CTO’s infrastructure teams to ensure secure design and integration of core services (firewall, VPN, EDR, SIEM, IAM, networks, and platforms).
• Review and approve security designs for major technology initiatives, research platforms, and third-party services.
• Provide expert security consulting to IT, research, and business units on new systems, applications, and services.
• Facilitate design workshops and threat modeling to identify and address security risks early in project lifecycles.
• Communicate complex security concepts clearly to technical and non-technical stakeholders.
• Support the GRC team in developing new security risk assessment methods for emerging technologies and new business cases.
• Perform deep technical assessments for custom applications and system configurations.
• Recommend security controls and enhancements to reduce risk while enabling innovation and usability.
• Contribute to the development and enforcement of security architecture standards, guidelines, and patterns.
• Monitor the effectiveness of implemented security controls and recommend improvements.
• Stay current with emerging threats, technologies, and best practices to inform architecture decisions.
• Perform other related duties as assigned.

Benefits

• Up to 22 days of vacation, 10 recognized holidays, and sick time.
• Competitive health insurance packages with priority appointments and lower copays/coinsurance.
• Take advantage of our free Metro transit U-Pass for eligible employees.
• WashU provides eligible employees with a defined contribution (403(b)) Retirement Savings Plan, which combines employee contributions and university contributions starting at 7%.
• Wellness challenges, annual health screenings, mental health resources, mindfulness programs and courses, employee assistance program (EAP), financial resources, access to dietitians, and more!
• We offer 4 weeks of caregiver leave to bond with your new child. Family care resources are also available for your continued childcare needs. Need adult care? We’ve got you covered.
• WashU covers the cost of tuition for you and your family, including dependent undergraduate-level college tuition up to 100% at WashU and 40% elsewhere after seven years with us.