Who we are:
Steelcase was founded as an office furniture maker, and we’ve evolved into the global leader in workplace solutions. We apply our insights to the intersection of space, technology, and furniture – helping individuals and teams in leading companies around the world to have a better day at work.
We pursue innovation, strive for sustainability, and develop insights in every part of our business.
Why people choose to work with us:
· Meaningful work that will challenge you and contribute to Steelcase’s purpose.
· Commitment to learning and growth for each of our staff.
· Opportunities to work on a global team and experience different cultures.
· Strong collaborative culture with a passion for collective success.
· Inspiring workplace and environment
Your Future Team:
We believe you will love our new workspace as much as we do! The IT Security team consists of professionals who are eager to learn and make a difference for the company. We are highly engaged with business users and we believe you’ll thrive in our environment.
What you will be doing:
As a member of the IT Security Team, the Security Architect will work with the Chief Information Security Officer (CISO) in developing and maintaining the Steelcase Information Security Program and consulting with the business to ensure the security requirements necessary to protect the organization’s mission and business processes are adequately addressed in all aspects of enterprise architecture including reference models, segment and solution architectures and the resulting systems supporting those missions and business processes. The Security Architect will also assume Authorizing Official responsibility for the operation of information systems at an acceptable level of risk to organizational operations (including mission function, image, or reputation) and organizational assets. As such, experience with a formal security assessment and authorization process such as NIST RMF is required. Overall, the ideal candidate will have 5 or more years of experience in addressing security and risk management, security engineering as well as experience in categorization of information systems, selection of security controls and security control implementation, assessment, and authorization of information systems.
Primary Responsibilities
- Document and address organization’s information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition lifecycle.
- Ensure that acquired or developed systems(s) and architecture(s) are consistent with organization’s cybersecurity architecture guidelines.
- Manage and approve Accreditation Packages
- Review authorization and assurance documents to confirm that the level of risk is within acceptable limits for each software application, system, and network.
- Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
- Coordinate response to cybersecurity incidents
- Develop enterprise architecture or system components required to meet user needs and translate proposed capabilities into technical requirements.
Skills and Abilities:
- Experience architecting cybersecurity solutions for a global manufacturing company
- Excellent Communication and Presentation Skills – ability to communicate across the business and to upper-level executives, on cybersecurity.
- Excellent business acumen with regard to business priorities, including financial and legal imperatives.
- Excellent interpersonal and customer relationship skills
- Good analytical, problem solving, project management and organizational skills
- Strong understanding of Risk Management
- Strong knowledge and understanding of network security architecture and cybersecurity concepts
- Strong working knowledge of IT Security tools and functions, such as IPS/IDS, Firewalls, AntiVirus/AntiMalware software, Vulnerability Scanning, Penetration Testing, behavioral and network monitoring.
- Experience with contracts, vendor relations, negotiations, and RFI/RFP process a plus
- Experience with M&A due diligence a plus
Education Requirements:
- A Bachelor’s degree in Computer Science or related field, or relevant educational or professional experience.
- Security certifications addressing security and risk management, identity and access control, security assessment and testing, security systems engineering, security architecture analysis, etc.
We are proud to have a diverse and inclusive workforce, and we’re always looking to get better. We value applicants who are comfortable interacting with people different than themselves. Women, people of any race or national origin, lesbian, gay, bisexual, and transgender people, veterans, working mothers and fathers, and everyone else are all invited to apply.
We seek to find the best person to fill this role and will not discriminate based on race, color, creed, genetic information, religion, national origin, gender, sexual orientation, gender identity and expression, age, disability, veteran status, or any other characteristic prohibited by law.
Ref #: 216043