Overview

Under general direction, the Senior Architect, Cybersecurity, is primarily responsible for shaping security solutions and playing a key role in the evolution of the organization’s Enterprise Architecture and Security functions. This role is responsible for providing security-related thought leadership and architecture guidance across a wide range of technologies and business initiatives. This role is accountable for establishing Information Security Standards, Technologies, Patterns, Reference Architectures and Best Practices and ensuring their adoption across all Product and corporate solutions. This includes advising and guiding the business and delivery teams in the planning, design and implementation of all solutions. This position reports to the Chief Information Security Officer regarding work, projects, and other engagements, and works as part of a matrixed IT organization to help bridge the gaps between business leadership, risk management and IT delivery in terms of Information Security Architecture and Technology.

Responsibilities

• Develops security architecture strategies for the organization in the form of standards, frameworks and guidelines, with the emphasis on application security, network security and identity and access management concerns

• Serves as primary information security interface to collaborate with product teams, business representatives, systems development and business users for establishing business requirements, information security functional requirements, security solution options and implementation plans

• Advises and contributes to strategies and initiatives to strengthen the Security Program which is identified as part of the corporate Information Security Practice or HITRUST corporate compliance

• Provides security controls, processes and technical advisory support to business units and projects by working cross-functionally to develop and implement strategies that balance security recommendations with business needs

• Works with leadership to develop a run book for the operational organization to enable safe and rapid responses to reported vulnerability disclosures

• Provides mentoring and technical leadership to the team

• Acts as Subject Matter Expert and provides third-level support, resolving the most difficult technical issues

• Establishes and maintains an effective relationship with product management and product engineering leadership as a trust advisor

• Adapts and supports the enterprise business strategy, gains executive approval and support, and oversees successful execution of initiatives

• Reviews and gains approval of security specific technical solutions through the architecture governance process

• Helps define department strategic objectives and drives business outcomes in alignment to the organizational strategy

Qualifications

Required Knowledge, Skills, and Abilities:

• Basic understanding of HITRUST framework

• Broad knowledge of information security processes and technologies such as: business process design, risk assessment, minimum baseline security controls (*nix, Windows, network protocols, common services), data classification and management, security monitoring and log analysis, incident management, , application and database architectures, SDLC, system planning and integration, and security metrics

• Advanced knowledge of technologies such as operating systems, directory services and network protocols

• Basic knowledge of database applications, spread sheet design, and report writing software

• Advanced written and verbal communications skills

• Ability to facilitate the development and application of architecture artifacts between product and engineering teams and customers

• Effective communication skills, both verbal and written, including the ability to communicate appropriately across all levels of an organization

• Advanced knowledge of business to business (B2B) and business to consumer (B2C) product lifecycle management and technology road-mapping processes

• Knowledge of multiple delivery methodologies, product operating models, and SaaS product deployment environments

• Intermediate skills in cloud security architecture and standard cloud security configurations and controls

• Ability to accomplish service goals, objectives and metrics consistent with Information Security Department strategic plans and business service level agreements

• Ability to resolve business security conflicts taking into consideration policy, risk and business needs

• Ability to perform trade-off and risk analysis and, if necessary, process and manage exceptions to achieve business needs

• Advanced knowledge of network security and principals

• Advanced knowledge of PKI, TLS/SSL, and basic cryptography principals

• Advanced knowledge of Identity and Access Management principals and Privileged Access Management, including SAML2, OpenID Connect, and OAuth2

• Basic knowledge of automation and scripting

Experience:

• 5 - 8 years of experience in enterprise security architecture role

• 10 years of IT infrastructure architecture and/or operations experience

• 4 years of experience in Large Scale System design (ERP, Custom, etc) and implementation

• 3 years of experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.)

• 3 years of experience performing network and application security penetration testing and/or threat assessments

• 3 years of experience architecting solutions in a cloud environment

Required Certification:

• Certification: CISSP

Benefits Overview

At NASCO, we trust our workforce to be fully remote, working from their home . This benefit offers significant, personalized outcomes for each associate including work/life balance, savings on commuting, work clothing, and increased time to spend on personal activities.

Our full benefit package is designed to support the physical, mental, and financial health of our associates. We offer:

Physical and Mental Health Benefits

• Choice of Blue Cross Blue Shield Medical, Dental, and Vision Plans

• Telehealthcare – for Medical and Behavioral visits

• Generous PTO with buy/sell options

• 9 Company holidays, a floating day off, and a day off for volunteering

• Employee Assistance Program

• Wellness program - earn insurance discounts or credit towards health-related items

Financial Health Benefits

• 401K Plan with employer matching contributions

• Company-funded spending/reimbursement accounts to help with out-of-pocket medical expenses

• Bonus and Recognition programs

• Tuition Assistance

• Consultation with financial planner

• Basic Life & AD&D Insurance, Short and Long-Term Disability Insurance provided, and Supplemental Term Life Insurance is available

• Group Discount programs - mobile, technology services, etc., to help you save money

Other Benefits

• E-Learning – Comprehensive and current library of e-learning and performance support assets, available on demand and at no cost

NASCO is an Equal Opportunity Employer/veterans/disability/race/color/religion/sex/sexual orientation/gender identity/national origin. Must have legal authority to work in the US.

We will not accept applicants that use AI when answering the screening questions. Applicants who use AI to answer any questions or to complete their application will not be considered for employment.

Location US-Home Office/ Remote

# Positions 1

Category Security Operations

Travel Requirements 0-20%