Business Security Solutions Architect

Position：Business Security Solutions Architect     

Key Responsibilities

• Architect and design comprehensive information security solutions that align with business requirements, industry best practices, and regulatory standards. Provide security consulting services to business stakeholders, offering expert guidance on security strategies, controls, and practices to enhance the overall security posture.
• Define a roadmap to continually assess and iterate security best practices for cloud, and on-premise environments as it pertains to reducing risk and ensure the protection of both the organization and customer data.
• Conduct thorough risk assessments to identify vulnerabilities and potential security risks across systems, networks, and applications. Collaborate with cross-functional teams and business units to understand their security needs and translate them into effective security solutions.
• Evaluate existing security controls, policies, and procedures to identify areas for improvement and recommend necessary enhancements. Stay up to date with emerging security threats, technologies, and industry trends, and apply this knowledge to design and implement proactive security measures.
• Develop and maintain strong relationships with business stakeholders, effectively communicating security concepts and requirements to both technical and non-technical audiences. Collaborate with security teams to ensure the successful implementation and ongoing monitoring of security solutions.    

Required Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.
• CISSP or other relevant security professional certifications / pursue CISSP if doesn’t have within 1 year of taking position
• Minimum of 8 years of experience in information security, with a focus on security solutions architecting, security consulting, and risk assessment.
• Strong knowledge of security architecture principles, frameworks, and best practices.
• Proven experience in designing and implementing effective security solutions across systems, networks, and applications.
• Deep understanding of security consulting methodologies, risk assessment techniques, and industry standards.
• Excellent interpersonal and communication skills, with the ability to collaborate effectively with business stakeholders at all levels.
• Strong analytical and problem-solving skills, with the ability to think critically and assess risks.
• Technical knowledge of security frameworks and controls including NIST 800-53
• Proven ability to successfully collaborate with business and technology senior leaders and teams to promote and manage consistent cybersecurity operating processes and process improvements
• Change management expertise that integrates the project, cultural and business impacts including establish enterprise-wide policies.
  
  

p