Senior Information Security Architect

About The Position

Requirements

• Advanced university degree in information security, computer science, engineering, mathematics, business or related discipline. A first-level university degree in information security, computer science, engineering, mathematics, business or related discipline plus two years of relevant experience may be accepted in lieu of an advanced degree.
• Certifications in information security\: CISSP OR CISM AND SABSA-SCF.
• At least seven years of relevant professional experience in regulated industries.
• Proven experience as an Information Security Architect, including leading matrix teams to architect, design, build, and implement complex information security application and infrastructure architectures for organizations facing multiple and sophisticated threats.
• Experience in business analysis and integration of secure system development lifecycles into well recognized project and service management methodologies.
• Experience working with and participating in an architectural solutions group or board.
• Hands-on experience securing at least one of the three major public cloud vendors (AWS, Azure, GCP).
• Experience in the implementation of IT Security in the areas of identity and access management, infrastructure, network, endpoints, applications, database system technologies, mobility, cloud, virtualization security architectures, and information security process improvement.
• Experience designing and securing solutions that leverage LLMs.
• Excellent written and spoken knowledge of English.

Nice To Haves

• Additional certifications like SABSA SCP, BRMP, CISSP-ISSAP, CSSLP, CCSK, or GSSP.
• AWS Certifications\: Solutions Architect - Associate or Professional; DevOps/SysOps; Security Specialty.
• Experience integrating SABSA security principles with other architecture disciplines such as TOGAF.
• Experience with securing and architecting solutions that leverage M365 technology such as power BI and power automate.
• Hands-on experience with identity and access management, authentication, and cloud security (AWS, Azure, or GCP).
• Experience with security process improvement and securing solutions using large language models (LLMs).
• Knowledge of other UN official languages, particularly French.
• Broad knowledge of technologies with deep expertise in areas relevant to information security including security architecture frameworks; identity and access management; authentication and authorization; cloud security; threat modeling and risk management; security monitoring, auditing, and incident response; application security.
• Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.
• Excellent insight into business and technological trends and their impact (risks and opportunities) to business enablement.
• Strong analytical and strategic thinking skills; able to synthesize information from multiple sources.
• Collaborative and able to build partnerships in a multicultural environment.
• Demonstrates integrity, values diversity, and shows service orientation.
• Good organizational and interpersonal skills to influence others towards a shared vision and positive results with or without the line of command.
• Effective communication, able to explain complex technical concepts to non-technical stakeholders.
• Results-driven, with personal accountability and ownership.
• Committed to continuous learning and innovation.
• Proficiency in threat modeling, risk management, and application security (e.g., OWASP).
• Familiarity with IT GRC tools, advanced infrastructure security, web services security, and automation platforms.

Responsibilities

• Lead the development and continuous refinement of WIPO's strategic security architecture vision, ensuring alignment with Information Assurance and ICT strategies. Contribute to the development and maintenance of WIPO's Information Assurance strategy.
• Collaborate with information risk, enterprise architecture, security engineering, Architectural Solutions Group, and application teams to define and apply business relevant and risk-based security architecture standards.
• Define, publish and maintain the information security elements of WIPO's enterprise architecture blueprint in close coordination with WIPO's enterprise architect and business ICT teams, integrating security architecture principles into system development and engineering processes.
• Ensure that WIPO's security reference architectures and patterns are current, standards-based, relevant, and adaptable to evolving business needs. Areas include\: identity and access management, service-oriented architectures, security auditing and logging, monitoring and reporting architectures, network segmentation, security policy detection and policy enforcement controls, remote access architectures, endpoint strategies, federation, application security architectures, mobility, and cloud security architectures.
• Review business and technology services and product architectures, identify design gaps, and recommend security enhancements.
• Represent information security in the WIPO Architectural Solutions Group ensuring applications are designed with threat models, attacks paths and security standards in mind.
• Manage a continuous architectural compliance program measuring and reporting compliance and effectiveness to governance committees.
• Develop and implement an awareness program to promote information security architecture principles and their application among business and ICT stakeholders. Identify and mentor champions for secure architectures practices.
• Perform other related tasks as required.