Principal Architect, Data & Analytics

Description:

This role is responsible for offering overall technical leadership and mentorship within the areas of security strategy, security standards, and security tooling evaluation. Principal Architects engage with engineering, testing, and product teams to drive security frameworks and best practices. They identify gaps in security design and review proposed architectures with an aim to prioritize and recommend changes or enhancements to junior architects for improving the overall security posture of the organization. They also provide technical guidance and coaching to Architects I/II.

Primary duties and responsibilities:

• Focuses on developing and driving the overall security strategy for the organization, ensuring alignment with security standards and frameworks.
• Evaluates and recommends security tools and technologies, ensuring they meet the organization s security strategy and compliance requirements.
• Ensures that security strategies and tools are aligned with the organization s control framework and security capabilities, driving continuous improvement in the organization's security posture.
• Leads and oversees the design, implementation, and continuous improvement of the organization s security strategy.
• Provides technical leadership to the Information Security team consisting of Architects, Analysts, and Engineers.
• Reviews and evaluates security technologies, tools, and services, providing recommendations to IT, business, and project teams ensuring that solutions align with the organization s security strategy and compliance requirements.
• Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities aligned with the control framework, business, technology, and threat landscape.
• Defines the future state of the organization s security strategy and ensures alignment with industry standards and frameworks.
• Executes security engagements during different phases of the security strategy execution lifecycle, including security capability gap assessment, alignment & execution of control framework and security capability tooling evaluations to reduce risk for the organization.
• Works with senior stakeholders to find effective security solutions that enhance the overall security posture of the organization while balancing business requirements with cybersecurity needs.
• Provides guidance and coaching to Architects I/II and offers overall technical expertise to the Information Security department and business stakeholders.
• Develops, matures, and maintains security strategy, principles, maturity matrices, models, standards, guidelines, and configurations.
• Defines key building blocks for the future state architecture and creates a roadmap to realize the same.
• Researches, models, and tracks secure system standards, industry trends, market technology, potential threats, tactics, and procedures for ecosystem applicability and reference.
• Creates detailed and clear functional technical requirements for the organization s security operations engagement and interaction, ensuring stakeholders clearly understand how to engage with Information Security services.
• Analyzes root causes for technical issues, and designs measures and methods to mitigate future reoccurrences.
• Identifies solutions and provide guidance on automation of procedures to provide a better end user experience with the security strategy, standards, and tooling catalog
• Prioritizes architectural needs and solutions with other senior executives, ensuring they align with criticality, feasibility, and the overall security strategy.

Educational qualifications:

• Bachelor s degree in Computer Science, Information Technology, or any other related discipline or equivalent related experience including certifications.

Preferred Certifications:

• Azure Security Engineer Certification.
• Certified Cloud Security Professional (CCSP).
• Certification in Information Security Strategy Management (CISM).
• Certified Information Systems Security Professional (CISSP).
• CompTIA Security + Certification.
• Project Management Professional (PMP) Certification.
• Systems Security Certified Practitioner (SSCP).
• TS-SCI Security Clearance Certification.

Work experience:

• 7-10+ years of directly related or relevant experience, preferably in information security.

Skills & knowledge:

• Behavioral Skills.
• Proactive Nature.
• Decision Making.
• Impact and influencing.
• Leadership Skills.
• Multitasking.
• Presentation Skills.
• Planning.
• Coaching and Mentoring.

Technical Skills:

• Security Strategy Development.
• Security Standards and Frameworks.
• Security Tooling Evaluation.
• Application Architecture.