Information Security Lead Architect

Westfield Group, InsuranceWestfield Center, OH
67d
Match Resume

About The Position

The Information Security Lead Architect is responsible for leading the design and implementation of enterprise-wide cybersecurity architecture solutions that protect critical systems, data, and infrastructure. This role provides deep expertise in security frameworks such as NIST CSF, ISO 27001, and Zero Trust, along with knowledge of cloud security, identity and access management (IAM), and data protection technologies. The Lead Architect assesses security risks, defines technical requirements, and develops strategies to mitigate vulnerabilities while aligning with organizational and regulatory standards. The position involves designing secure network and cloud architectures, implementing strong access control models, and establishing encryption and monitoring mechanisms to enhance resilience across hybrid environments. The role plays a vital part in risk management, conducting assessments, identifying control gaps, and driving remediation strategies that strengthen the company's overall security posture. As a technical leader, the Information Security Lead Architect provides guidance, mentorship, and direction to security and technology teams, fostering collaboration, innovation, and continuous improvement. Serving as a trusted subject matter expert, this role influences the selection, design, and implementation of moderate- to high-complexity security solutions, ensuring alignment with business objectives, compliance requirements, and industry best practices.

Requirements

  • 10+ years of experience in Information Security or related field
  • Bachelor's degree in Computer Science, Information Technology or a related field and/or commensurate experience
  • Master's degree in related field is preferred

Nice To Haves

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Azure Solutions Architect (Preferred), AWS Certified Solutions Architect
  • TOGAF
  • Other relevant certifications
  • Expertise in security practices and tools designed to protect containerized applications
  • Experience in the design, implementation, and ongoing reviews of security controls for one or more public cloud providers (e.g., Azure, AWS)
  • Skills in the design, assessment, and implementation of encryption security controls
  • Proficiency in assessing overall network security posture and vulnerabilities
  • Background in application security and the software development lifecycle
  • Familiarity with the NIST Cybersecurity Framework
  • Knowledge of ISO/IEC 27001 standards
  • Understanding of the SABSA framework
  • Awareness of GDPR (General Data Protection Regulation) requirements
  • Knowledge of New York Department of Financial Services (DFS) cyber security regulations
  • Understanding of the California Consumer Privacy Act (CCPA)

Responsibilities

  • Develops and contributes to the implementation of the information security architecture strategy and roadmap, aligning it with business objectives, regulatory requirements, and industry best practices
  • Provides guidance to the security team, overseeing the design and integration of security solutions
  • Works with business units, IT teams, executive leadership, and vendors to communicate security risks and strategies
  • Recommends and implements new security technologies and tools
  • Defines and enforces security standards and frameworks
  • Collaborates with enterprise architects to integrate security controls into IT architecture
  • Develops and promotes security architecture processes and templates
  • Conduct security architecture reviews and risk assessments, identifying potential vulnerabilities, weaknesses, and gaps in existing systems and proposing effective solutions to mitigate risks
  • Serves as a mentor to junior security architects and team members
  • Participates in security forums and conferences
  • Provides technical leadership and guidance to the information security team and other stakeholders, overseeing the design, implementation, and integration of security solutions across the organization
  • Ensures collaboration of business units, IT teams, and vendors to assess security requirements, evaluate solution options, and architect secure systems and applications that meet business needs while maintaining a strong security posture
  • Defines and enforces information security standards, frameworks, and reference architectures, ensuring consistent and standardized security practices across all technology domains and projects
  • Oversees the conduct of security architecture reviews and risk assessments, identifying potential vulnerabilities, weaknesses, and gaps in existing systems and proposing effective solutions to mitigate risks
  • Oversees the design and implementation of security controls, such as firewalls, intrusion detection/prevention systems, encryption mechanisms, and secure network architectures, to protect the organization's assets and data
  • Collaborates with enterprise architects and IT stakeholders to integrate security controls and requirements into overall IT architecture frameworks, ensuring the security-by-design principle is followed throughout the development and implementation lifecycle
  • Provides subject matter expertise in security technologies and solutions, evaluating emerging security trends and products, and making recommendations for the adoption of new technologies to enhance the organization's security posture
  • Participate in security incident response and investigation activities, coordinating with internal teams and external entities to effectively respond to and mitigate security incidents, and providing guidance on post-incident remediation actions

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Industry

Insurance Carriers and Related Activities

Education Level

Bachelor's degree

Number of Employees

1,001-5,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service