Sr. Information Security Architect

Job Description Summary

At CLEAResult, we lead the transition to a sustainable, equitable, and carbon-neutral energy-efficient future for our communities and our planet. We do that by creating a people-first culture built on trust, accountability, and transparency; where every employee – regardless of position, role, or identity is treated with respect and given an equal chance to thrive.

Additionally, you will enjoy:
• Medical, Dental, and Vision Insurance; we also offer a company-paid health care concierge service to help navigate our health plan to make the best decisions for you and yours
• 401(k) with company match
• Paid vacation, sick, personal and parental leave time
• Paid Volunteer Time: giving back to our communities is important to us
• Employee Recognition Program – convert your recognition points into gift cards
• Employee Assistance Program – offers benefits to help you manage daily responsibilities
• Access to on-demand training courses to advance further in your career

Job Description

Job Description

We are looking for a talented individual…

To join our team as a Senior Information Security Architect. The Senior Information Security Architect is a senior level individual contributor responsible to plan, analyze, design, configure, test, implement, maintain and support CLEAResult’s computer and network security infrastructure.  The Security Architect is responsive to changes in regulations and risk and works proactively to anticipate both regulatory changes as well as changes in the threat landscape. The Senior Architect possesses a comprehensive awareness of CLEAResult’s technology and information needs and leverages that awareness to develop and test security structures to protect the company’s systems.

• Lead engagement with IT stakeholders, business management, and other strategic partners to support the design, development, and deployment of enterprise Information Security solutions that span multiple technologies and disciplines.
• Develop Enterprise Architecture principles to align IT security architecture with business strategies to achieve short and long-term goals; builds reference architectures and drives architectural security alignment across the enterprise.
• Design and implement network intrusion detection (IDS), data loss prevention (DLP), cloud access security broker (CASB) and other relevant solutions to strengthen Information Security posture.
• Conduct and oversee the analysis of security breaches to determine root cause.
• Research, recommend, and oversee the installation of appropriate tools and/or countermeasures to improve information security posture and reduce risk.
• Lead internal and external security assessments.
• Work with software development partners and leaders to maintain and grow a secure software delivery pipeline.
• Design and implement the necessary Information Security architecture to mitigate threats as they emerge.
• Participate in and drive the establishment of architecture and development standards to strengthen CLEAResult’s Information Security program.
• Conduct staff training on network and information security procedures and best practices.
• Align standards, frameworks, and security with overall business and technology strategies.
• Identify and communicate current and emerging security threats 
• Oversee and maintain the integrity of the current and proposed architectures to assure quality, consistency, and adherence to established standards in the face of political and business pressures.
• Research and recommend security enhancements and purchases.
• Define and manage a review process to evaluate project proposals for effectiveness within the CLEAResult environment.
• Promote the sharing of Information Security best practices across the CLEAResult environment to reduce costs and improve Information Security posture.
• Facilitate interaction across all architect roles within the enterprise; work with solution and domain architect(s) to provide a consensus-based enterprise solution that is scalable, adaptable, and in synchronization with ever-changing business needs.
• Lead the development of policies, standards, and guidelines that direct the selection, development, implementation, and use of information technology within the enterprise.
• Utilize broad technical leadership that impacts technical direction and exerts influence throughout the organization.
• Collaborate with the PMO to develop project plans, milestones, and deliverables for enterprise IT initiatives.
• Adhere to IT Service Management controls including change management, incident management, etc.
• Create documentation of the technical environment, associated actions, and results.
• Be able to support a 24/7 on-call function.

In this exciting career opportunity, you will have…

• Advanced understanding of security technologies (e.g. anti-virus, DLP, IDS, firewalls, etc.) including knowledge of best practices and usage in a mid-size enterprise.
• Advanced knowledge of risk assessment tools, technologies, and methods.
• Demonstrated ability to plan, research, and develop Information Security policies, standards, and procedures.
• Extensive knowledge of enterprise security programs including best practices.
• Extensive knowledge of security operations, architectures, policies, and standards.
• Extensive knowledge of logging, monitoring, and retention and usage of SIEM technologies
• Be highly skilled and able to perform threat hunting Automation & Orchestration
• Excellent knowledge of Firewalls/WAN/WAF/LAN/Endpoint Security; experience with Cisco products/technologies (e.g. ASA, ISE, Firepower, etc.) highly desirable.
• Excellent knowledge of security tools such as: Tenable, ZenGRC, Nessus, Crowdstrike Falcon, Protocol Analyzers, DLP, NAC, SIEM, IPS/IDS, etc.
• Knowledge of disaster recovery, computer forensic tools, technologies, and methods.
• Knowledge of Cloud Services Security specifically Azure and AWS services.
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures.

Education and Experience

• Minimum of 10 years industry experience; 15+ years desired.
• Bachelor’s degree in computer science, or related field required.
• Master’s degree preferred; Master’s degree in cybersecurity a strong plus.
• Experience with software development, cloud architecture, vulnerability management, and risk management disciplines.
• Experience with secure solution design, coding practices and secure SDLC.
• Experience with information security concepts and frameworks (NIST, ISO, COBIT).
• Experience with operating system security models and/or mechanisms.
• Experience in threat modeling and weakness analysis.
• Experience conducting and directing penetration testing and security audits.
• Hands-on experience with various Azure Sentinel SIEM
• Experience with Threat Intelligence tools
• Experience with Malware Sandbox (VT, FireEye, Hybrid Analysis, etc.)
• Experience with scripting languages and REST APIs.
• Experience implementing multi-factor authentication, single sign-on, identity management or related technologies.

Certifications

One or more of the following certifications highly desirable:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• Information Systems Security Architecture Professional (ISSAP)
• Information Systems Security Engineering Professional (ISSEP)

Compensation Range

$148,700.00 - $223,100.00

Currency

USD

Type

Salary

Any offered salary is determined based on internal equity, internal salary ranges, market data/ranges, applicant’s skills and prior relevant experience, certain degrees and certifications (e.g. JD/technology), for example.

Additional Job Description

Reasonable accommodations may be made for individuals with disabilities to perform the essentials functions of this position. 

Equal Opportunity Employer

As an Equal Opportunity Employer, we are committed to ensuring equal employment opportunities for all job applicants and employees.  Employment decisions are based upon job-related reasons regardless of an applicant’s race, color, religion, national origin, marital status, age, sex, gender identity, sexual orientation, status as a qualified individual with a disability or protected veteran, or any other protected status. 

The above job description and job requirements are not intended to be all inclusive.  CLEAResult retains the right to make changes or adjustments to job descriptions and/or requirements at any time without notice.