Enterprise Security Architecture Manager

Apply Now

Company: Open Systems Technologies

Location: Iselin, NJ 08830

Description:

Enterprise Security Architecture Manager
Location: Iselin, NJ
Compensation: $160-220k

Responsibilities:
  • Responsible for the development and implementation of the enterprise security architecture strategy, ensuring alignment with the organization's business objectives, risk appetite, and regulatory requirements.
  • Define security architecture standards, frameworks, and best practices, ensuring they are consistently applied across the enterprise.
  • Ensure that security architecture designs are scalable, flexible, and future-proof to accommodate changing business needs and evolving threat landscapes.
  • Champion security across multiple divisions, ensuring security is embedded into the design and implementation of products, services, and technology solutions.
  • Provide thought leadership and guidance on security risks, policies, and controls to senior management and stakeholders, influencing key business decisions.
  • Familiarity with SABSA framework and its six layers, particularly in risk management and security strategy development
  • Lead efforts to assess and mature security practices across the enterprise
  • Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security threats and compliance challenges
  • Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal Audit, and Enterprise Risk to support current and future initiatives
  • Keep informed of new and emerging security threats & assess effectiveness of current controls to identify opportunities for program improvement
  • Provide expert-level security architecture design, analysis, and consultation to enterprise-wide programs, ensuring security risks are appropriately mitigated during the planning and design stages.
  • Lead, manage, and mentor a team of security architects, ensuring they have the necessary skills, knowledge, and resources to effectively design and implement security solutions.
  • Foster a collaborative and high-performance team culture, promoting innovation, accountability, and continuous learning.
  • Manage team performance, provide regular feedback, and ensure professional development opportunities for all team members.
  • Define clear goals and objectives for the team, ensuring alignment with the broader security strategy and organizational goals.
  • Work closely with technology teams, including Infrastructure, Cloud, Development, and Security, to embed security into solutions from the outset.
  • Oversee and guide assessments of new technologies, vendors, and third-party services to ensure compliance with enterprise security standards and reduce potential risk exposure.
  • Lead and guide project and program managers to ensure the integration of security architecture across various initiatives, with a focus on scalability, compliance, and risk management.
  • Define, monitor, and enforce security architecture governance processes to ensure that security standards and controls are met across the enterprise.
Qualifications:
  • 10+ years of experience in information security architecture, with at least 3-5 years in a leadership role, managing and mentoring security architects or technical teams.
  • Strong background in designing and implementing security architectures across complex enterprise environments, including cloud, infrastructure, and application security.
  • Extensive experience with enterprise architecture frameworks and security standards such as NIST, ISO 27001, SABSA, and Cloud Security Alliance (CCM).
  • Extensive experience working with senior leadership and stakeholders to drive strategic security initiatives, influencing decisions at the enterprise level.
  • Proven ability to lead cross-functional teams and collaborate with senior management, business stakeholders, and technical teams to deliver secure solutions that align with business objectives.
  • Degree in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent)
  • Professional certifications such as CISSP, CISA, CISM, CRISC, SABSA, or equivalent.
  • Deep expertise in risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls.
  • Experience with cloud security solutions and services

Similar Jobs