Enterprise Security Architect

About the job

Overview The Enterprise Security Architect is a critical member of the Enterprise Security Office, with primary responsibilities to the Security Engineering and Architecture team. This role is responsible for the technical leadership and expertise necessary to define the strategic intent of the security engineering and architecture program. The Enterprise Security Architect is responsible for the overall development and application of the security standards and requirements that comprise the enterprise architecture framework. This security framework defines the security domains (data security, application security, and cloud security), capabilities within each domain, and the specific security solutions or technologies that address the requirements associated with each domain. This role also participates in the support of new security solution development, enhanced or optimized use of existing security solutions, and the development of processes that aim to better protect the confidentiality, integrity, availability, and privacy of the technology and data of the organization. The Enterprise Security Architect will conduct, or assist with conducting, designing, planning, implementing and operationalization of all infrastructure, applications, and systems, including selection and deployment of cybersecurity technologies. Responsibilities Define and maintain the framework of applicable security controls and requirements that constitute the enterprise security reference architecture for the organization Translate business priorities into information security requirements that ensure protections regarding the confidentiality, integrity, availability, and privacy of the organizations information technologies and it’s data Provide technical leadership in selecting and seamlessly implementing next-generation security solutions that enable the business to remain agile, efficient, and innovative Stay abreast of changes in the business and business environment, as well as the evolving regulatory landscape and privacy practices likely to influence the organization Play a key role in the development of the Enterprise Security Office roadmap Provide technical guidance in Lennar’s process of 3rd-party risk and compliance management Assist in the development and maintenance of security solutions, including contingency plans that align with the infrastructure resiliency capabilities of the organization Work directly with various teams to ensure that all relevant security risks are identified, evaluated, and appropriate and well-balanced security solutions are implemented in order to manage risks to the organization Maintain a centralized Information Security Architecture data repository that includes reference architectures, security standards, security baselines, and reference material Lead the team in the identification of architectural gaps and inefficiencies in existing security solutions; support a process of implementing enhancements through appropriate planning and roadmap development Provide technical leadership for the security program with a focus on developing the reference architectures and associated security standards that ensure the protection of the corporate assets, brand, and data Review, analyze, and report on emerging cybersecurity risks and trends, including any potential effect on the security posture of the organization; delivering periodic updates on new attack vectors and industry trends to leadership Represent the Enterprise Security Office as a member of the Architecture Review Board, assisting in the development and approval of secure solutions to proposed technology solutions Other job duties as assigned Qualifications Education and Experience Requirements: Education / Academics: Bachelor’s Degree required in cybersecurity, information security, engineering (e.g., mechanical or electrical engineering), computer science, information technology, or related field Master’s degree strongly preferred Career Experience: 10+ years’ experience in information technology engineering or architecture roles 5+ years’ experience in a technical leadership role within information security 2+ years’ experience in an information security architectural role Practical experience in the application of security controls in security engineering, design, or developing reference architectures: NIST 800-53r(4/5) ISO 27001 Annex A / ISO 27002 Cloud Security Alliance – Cloud Controls Matrix (CCM v4) Center for Internet Security – Critical Security Controls (v7/8) Familiarity with industry frameworks, standards, and control families: NIST Cybersecurity Framework ISO 27001 SABSA – Enterprise Security Architecture ITIL (v3/4) COBIT 5/COBIT 2019 Professional Certifications / Training: Certified Information Systems Security Professional (CISSP) Microsoft Azure Security Technologies (AZ-500) Microsoft Azure Solutions Architect (AZ-305) AWS Solutions Architect GIAC Defensible Security Architecture (GDSA) SABSA Chartered Security Architect TOGAF 9.X Level 1 or 2 Certification Additional Skills: Experience as a technical leader and collaborator in a team-oriented environment is essential Capable to conform to shifting priorities, demands and timelines Considerable writing proficiency, oral presentation skills, problem solving and decision-making skills Ability to facilitate productive meetings and work successfully in a team-oriented environment. Experience with the development of formal written reports to communicate architectural design recommendations to all levels of technical teams, management, and leadership positions Ability to deal effectively with a wide range of vendors, service providers, and customer types Ability to read communication styles of team members and contractors who come from a broad spectrum of disciplines Capability to depict enterprise information conceptually, logically, and physically Persuasive, encouraging, and motivating. Ability to elicit cooperation from a wide variety of sources, including upper management, clients, and other departments Ability to defuse tension among project team, should it arise Ability to bring project to successful completion through organizational dynamics Strong Customer service skills and focus required Ability to effectively identify, prioritize, and execute tasks in a high-pressure environment Tenacious, driven, energetic, and a high degree of professional integrity Ability to set strategic architectural direction Understanding of Enterprise Architecture governance & planning processes Experience with business process architectures and management Interact well with co-workers, supervisors and management Maintain professional appearance and demeanor at all times Physical Requirements: This is primarily a sedentary office position which requires the incumbent to have the ability to operate computer equipment, speak, hear, bend, stoop, reach, lift, and move and carry up to 25 lbs. Finger dexterity is necessary. 10-20% of travel is required. This description outlines the basic responsibilities and requirements for the position noted. This is not a comprehensive listing of all job duties of the Associates. Duties, responsibilities and activities may change at any time with or without notice. #CB

#Redhen Type Regular Full-Time