Enterprise Security Architect

Genesis10 is seeking an Enterprise Security Architect with our client in their Milwaukee location.

Summary :

The Enterprise Security Architect will design, implement, and maintain our security architecture while developing, reviewing, and guiding information security solutions across all business units, collaborating with stakeholders and teams throughout the organization.

This role is responsible for directing information security controls into business and technology processes, overseeing threat modeling products and services, identifying and remediating risks for externally sourced and internally developed software, and partnering with development teams to implement secure software development practices.

Responsibilities :

• Plan, research, and design comprehensive security architecture for enterprise Technology Services systems, aligning with business strategies and requirements.
• Define security (functional and non-functional) requirements aligned with business objectives. · Work with stakeholders to select, evaluate, design, and document enterprise security solutions.
• Support the development of security standards, reference architectures, patterns, and guidelines for consistent security posture.
• Assess the effectiveness of security controls (data protection, identity and access management (IAM), detective controls, infrastructure / network security, incident response) and drive implementation of appropriate controls, processes, and remediation of non-compliance.
• Research and advocate new technologies, architectures, and security products to enhance the organization's security maturity roadmap.
• Act as a subject matter expert for security design, configurations, baselines, and technical standards. · Stay informed about emerging security practices and standards.
• Respond to and investigate security incidents, providing thorough post-event analyses.
• Verify security systems through the development and implementation of test scripts.
• Conduct regular security testing, monitoring, and implements necessary enhancements to maintain a strong security posture.
• Collaborate with senior leadership to define security requirements, effectively communicate results, and assess security risks.
• Enhance the Security team's capabilities of delivering solutions and answering technical questions.
• Perform other position-related duties as assigned.

Minimum Experience Requirments :

• Bachelor's degree in computer science, technology services, or a related field
• Eight years or more of work experience designing and building enterprise-level security architecture and engineering environments
• Experience working with cloud security architectures (Azure, AWS)
• Experience working with advanced security controls and technologies (e.g., SIEM, CASB, Data Loss Prevention (DLP))
• Experience integrating security throughout the software development lifecycle (SDLC).
• Experience with secure architecture principles, secure SDLC, and security device management (installation, configuration, troubleshooting)
• Experience working with and resolving network attacks, phishing, spam email, encryption, authentication, logging and log analysis, and device reputation
• Experience securing application programming interfaces (APIs) to prevent unauthorized access and data breaches
• Experience designing architectural reference materials
• Experience working with incident response planning and execution
• Experience working with security testing (scanning, pen testing, blue / red team activities)
• Experience working with common industry standards (ISO27001 / 2, NIST, COBIT, CIS) and regulatory standards (SOX, PCI, GDPR, CCPA)
• Experience conducting security risk assessments, business impact analysis (BIA), and business continuity planning (BCP)
• Experience working in technology rationalization, assessments, and strategy development within cybersecurity contexts
• Experience identifying security weaknesses and recommending remediation using industry best practices
• Experience building test environments to simulate real-world security situations
• Experience securing cloud containers and serverless functions
• Experience working with Secure Access Service Edge (SASE)
• Experience working with Identity Governance and Administration (IGA).
• Experience implementing Zero Trust security
• Knowledge of the latest cybersecurity threats and defense mechanisms
• Knowledge of data security techniques and best practices for protecting data at rest, in transit, and in use
• Knowledge of IAM, access control models, authentication methods, and authorization principles
• Knowledge of application security, including secure coding practices, vulnerability assessments, and penetration testing methodologies
• Knowledge of encryption algorithms, key management practices, and data protection

Preferred Qualifications :

• Experience mentoring and leading security teams
• Experience managing the budget for a security team
• Experience working with python and scripting languages
• Knowledge of current and emerging security threats

Required Certifications and / or Licenses :

• Certified information systems security professional (CISSP) certification
• Certified Information Security Manager (CISM) certification
• Certified ethical hacker (CEH) certification

Required Knowledge, Skills, and / or Abilities :

• Ability to influence and negotiate with senior stakeholders
• Ability to align security strategy with business objectives
• Highly collaborative, capable of interacting and communicating effectively with peers, management, and leadership teams of varying technical levels, and acting with urgency in response to security challenges or requirements
• Strong analytical skills, with attention to detail
• Advanced technical writing skills and the ability to lead and communicate effectively within an enterprise environment
• Exceptional written and verbal communication skills
• Outstanding leadership skills with the ability to delegate responsibilities and authority effectively and to encourage individuals to decide how they will accomplish their goals and resolve issues
• Well-developed interpersonal skills, negotiation, writing, speaking, and listening skills
• Strong business acumen and strategic thinking ability

Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles.

With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client.

Benefits of Working with Genesis10 :

Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.

The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.

Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)

Behavioral Health Platform

Medical, Dental, Vision

Health Savings Account

Voluntary Hospital Indemnity (Critical Illness & Accident)

Voluntary Term Life Insurance

401K

Sick Pay (for applicable states / municipalities)

Commuter Benefits (Dallas, NYC, SF)

Remote opportunities available