Enterprise Security Architect

The Enterprise Security Architect provides thought leadership and champions the enterprise cybersecurity strategy across Deltek. The Enterprise Security Architect provides pragmatic cybersecurity expertise to security teams embedded in functional business units, such as Product, Cloud, and IT to guide a high-value, threat-informed, security strategy cross organizationally. Across collaborative teams, the Enterprise Security Architect instills a secure-by-design and security-first mission to ensure the continuous improvement of threat-informed defenses, maintaining a culture of security.

The Enterprise Security Architect is a highly visible role interfacing with multiple internal teams and external partners. Successful candidates in this role possess technical skills and business acumen and can effectively communicate complex topics. The Enterprise Security Architect understands how attackers think and their motives, while at the same time understanding corporate business objectives.

• Provide leadership and direction with security practices and methodologies in enterprise security.
• Offer security and design coaching and expertise as needed throughout Deltek.
• Collaborate with the CISO to develop a short- and long-term security design roadmap supporting the principles of Zero Trust
• Create technical documentation with architecture diagrams, configuration guides and operational practices for Global Information Security (GIS) led projects.
• Make recommendations to improve automation efficiencies, security practices, and end user experience for projects contributing to enterprise security.
• Communicate and regularly reinforce strategic security objectives, set by the CISO, to cybersecurity leaders, stakeholders, IT and developers.
• Participate in security groups and consortiums for knowledge and building relationships.
• Promote a positive security culture focused on collaboration and creating strong relationships cross-organizationally.
• Champion the use of modern security design principles informed by the CIS Critical Security Controls, Lockheed-Martin Cyber Kill-Chain, Mitre Att&ck Enterprise Framework, and the Verizon Data Breach Report.
• Attend and participate in meetings for security requirements as needed with functional business units, including change control boards.
• Develop internal and external partnerships aimed at improving security practices and reducing cost.
• Serve as a central point of contact for enterprise cybersecurity requirements, initiatives, and escalations.
• Communicate and recommend changes to the enterprise security ecosystem to mitigate security challenges.
• Uphold cybersecurity principles to meet compliance, privacy laws, and regulatory requirements
• Develop the team through coaching, mentoring, and fostering an environment of cross-functional learning.

Qualifications :

• Bachelor’s degree in science, information security, cybersecurity, computer science, technology, engineering, or mathematics.
• Preferably 15-plus years in an enterprise architect, senior leader, or similar consultative role to executive leadership in market-leading, technology-driven companies.
• Preferably one or more security industry certifications, such as CISSP, CISM, GSEC, CCSK or other SANS certifications.
• Proficient in infrastructure security, principles of Zero Trust, vulnerability management, threat modeling, incident response, product security, and cyber-risk management.
• Well-versed with security tooling and techniques
• Experience identifying opportunities for cost-savings through vendor negotiation, license utilization, and consolidation of capabilities to effectively manage an annual cybersecurity budget.
• Exemplary communication and leadership skills.
• Capacity to comprehend complex technical infrastructure, identities, access controls and least privilege.
• Understanding of service design, delivery concepts and control frameworks.
• Excellent judgment and the ability to make quick decisions when working with complex situations.
• High degree of integrity, professionalism and trustworthiness.
• 20-plus years with a combination of cybersecurity, cloud, and IT engineering experience in global, product-driven, enterprises.

Note: Applicants must be authorized to work in the United States without the need for visa sponsorship.