Information Security Architect

Summary

Join EVOTEK, a leading digital business enabler, as a Security Architect. You will design, review, and oversee the implementation and testing of security systems within client IT infrastructures. Responsibilities include identifying security weaknesses, advising clients on security best practices, and staying current on emerging security threats. You will work closely with clients to select and implement security tools and solutions. This role requires extensive experience in technology and cybersecurity, including security architecture and various security frameworks. EVOTEK offers a competitive salary, performance bonuses, and a comprehensive benefits package.

Requirements

• 10+ years’ experience in Technology and Cybersecurity
• 5+ years’ experience in security architecture
• Deep experience in either infrastructure related security or application security as a primary focus
• Familiarity with security in non-primary area (infrastructure security or application security)
• Experience with one or more security best practice frameworks and controls (e.g., NIST CSF, CIS Controls, HITRUST CSF, etc.)
• Ability to operate within a Waterfall, Agile or hybrid solutions delivery/project management model
• Familiarity with current and evolving security related compliance requirements (e.g., GDPR, CCPA, HIPAA, PCI, etc.)
• The ability to interact with a wide range of people from different backgrounds and experience levels
• Excellent teaching, problem-solving, communication, and interpersonal skills
• Excellent documentation skills. Including, but not limited to: Architectural High-Level and Low-Level diagrams [HLDs and LLDs], Network diagrams, Data-flow diagrams, Requirement’s artifacts (e.g., non-functional, and technical requirements) and Security Policy and Standards documentation

Responsibilities

• Perform design, review, provide implementation and testing oversight, and validation of security systems within client IT infrastructure
• Review current security posture (including security solutions, security measures, policies, and standards)
• Identify areas of weakness and respond promptly to potential security concerns and breaches of client environments
• Advise clients on security subjects, providing guidance on a wide range of security concepts and best practices
• Serve in a security leadership role approving or denying changes to client environments as engagements require
• Stay abreast of current and emerging security concepts, attacks, vulnerabilities, and best-practices
• Share concerns and guidance with clients and internal team members on these subjects in a timely and effective manner
• Review and/or design secure architectural designs for client organizations based on client requirements, security architectural best practices, and operational needs
• Provide security architecture advisory and guidance
• Assess project requirements related to security requirements standards and provide architectural recommendations
• Identify architectural security risks associated with proposed changes/solutions and compensating/mitigating controls where necessary
• Identify gaps in existing security related capabilities to meet client requirements
• Assess and/or create low level and high-level architecture designs
• Assess and/or create reference and solution architectures
• Facilitate and advise on the collection of business requirements pertaining to security
• Contribute to strategic planning/road mapping initiatives related to security architecture
• Review of the current environment, specifically reviewing administrative, technical, and physical controls based on the client’s industry and risk tolerances
• Work closely with client teams on the selection of security tools and solutions, as well as architecting the implementation of said tools
• Conduct assessments on tools and environments based on industry best practices and standards

Preferred Qualifications

• Experience with architectural methodologies and frameworks (e.g., SABSA, TOGAF, Zachman) is a plus
• Knowledge of DevOps / DevSecOps concepts and frameworks is a plus

Benefits

• Salary commensurate with years’ of experience, technical expertise and geographic location. Salary range: $150,000 to $180,000
• Performance bonuses
• Benefits package that includes 100% paid medical, dental and vision for the employee
• 401(k) with employer match
• Strong company culture
• Flexible PTO policy
• Flexible working arrangements
• Annual company overnight retreat