Enterprise Architecture Security Lead

Enterprise Architecture Security Lead

Location: St Louis, MO, onsite

Need an active security clearance (Mandatory)

The EA Security Lead is a senior-level position responsible for developing, implementing, and maintaining the security architecture within the organization's enterprise architecture framework. This role bridges the gap between enterprise architecture and information security, ensuring that security principles and practices are embedded throughout the organization's technology landscape and business processes.

Key Responsibilities:

• Develop and maintain the organization's security architecture as an integral part of the overall enterprise architecture.
• Align security architecture with business goals, regulatory requirements, and industry best practices.
• Collaborate with enterprise architects, solution architects, and business stakeholders to ensure security is considered in all architectural decisions.
• Conduct security risk assessments and threat modeling for existing and proposed architectures.
• Design and oversee the implementation of security controls and measures across the enterprise.
• Develop security standards, guidelines, and policies that align with the enterprise architecture.
• Evaluate emerging security technologies and methodologies for potential integration into the enterprise architecture.
• Lead security architecture reviews and provide recommendations for improvement.
• Ensure compliance with relevant security regulations and standards (e.g., GDPR, HIPAA, PCI-DSS).
• Mentor and guide other architects and security professionals on security best practices within the EA context.
• Participate in disaster recovery and business continuity planning from a security architecture perspective.
• Communicate security architecture concepts and strategies to both technical and non-technical stakeholders.

Required Skills and Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred.
• 8+ years of experience in information security, with at least 3 years in a security architecture role.
• Strong knowledge of enterprise architecture frameworks (e.g., TOGAF, Zachman) and security frameworks (e.g., NIST, ISO 27001).
• Extensive experience in designing and implementing security solutions across various technology domains (e.g., network, cloud, applications, data).
• In-depth understanding of cybersecurity principles, risk management, and threat landscapes.
• Familiarity with relevant laws, regulations, and industry standards related to information security.
• Experience with security technologies such as firewalls, IDS/IPS, SIEM, IAM, and encryption.
• Strong analytical and problem-solving skills with the ability to balance security requirements with business needs.
• Excellent communication skills, including the ability to explain complex security concepts to diverse audiences.
• Leadership experience in driving security initiatives across large organizations.

Preferred Qualifications:

• Experience in cloud security architecture (AWS, Azure, Google Cloud Platform).
• Knowledge of DevSecOps practices and principles.
• Experience with zero trust architecture and implementation.
• Familiarity with AI and machine learning applications in security.
• Background in a highly regulated industry (e.g., finance, healthcare, government).

This role description outlines the key aspects of an EA Security Lead position, highlighting the critical role these individual plays in ensuring that security is an integral part of the organization's enterprise architecture. The position requires a unique blend of enterprise architecture expertise, deep security knowledge, and strong leadership skills to effectively guide the organization's security posture within its broader technology strategy."