JC0034 - Enterprise Architect - Medior

Freelance Opportunity- The Enterprise Security Architect

Defines secure reference architectures for various information management and information technology environments.

Develops and maintains the present and future state architecture models for various security capabilities (e.g., trust management, identity & access management, secrets management, etc.).

Conducts in-depth architecture risk assessments, including threat modelling, for IT and telco infrastructure domains.

Conducts architecture compliance assessments.

Guides delivery teams in the selection and implementation of security controls.

Occasionally serves as a solution architect for the design of an enterprise security service.

Authors security strategies, policies, standards, and procedures.

Develops long term visions and roadmaps and presents these to senior management.

Identifies business opportunities enabled by information security.

Occasionally develops business proposals, ensuring quality estimates, and harvesting and leveraging reusable assets.

Develops working relationships with tribe leads and suppliers, ensuring overall strategic and architectural alignment.

Applies industry standards as issued by various standards development organizations

Requirements:

CISSP, CISM, GIAC, SABSA, TOGAF or similar Infosec and/or architecture practice certifications.

Solid knowledge of enterprise and proven experience with enterprise architecture analysis and design practices (method processes & content frameworks, production of models, viewpoints and views, etc.).

Minimum 3 years of experience in information / cyber security architecture.

Managed architecture activity across the full lifecycle, from inception through to implementation.

Applied and integrated a broad variety of security technologies, resulting in layered, defence-in-depth security architectures.

Reconciled multiple stakeholder viewpoints, applying trade-off analysis.

Applied Infosec industry standards / best practice frameworks (e.g., CIS) in large organisations.

Maintained a holistic perspective on the security capabilities needed to support or deliver the enterprise's strategic goals and objectives. These capabilities cover a broad variety of security domains: IAM, EPP, application security, etc.

Acquired skills in agile delivery, general project management and architecture documentation.

Applied regulatory and legal requirements related to information Security and Data protection.

Applied risk management methods and techniques in large risk environments.

Requirements:

Proven team player with excellent communication, presentation and negotiations skills, and the ability to interface will all management levels in the enterprise.

Excellent analytical, conceptual, and problem-solving abilities.

Ability to conduct research into emerging technologies and trends, standards and products as required. Learns fast.

Ability to effectively prioritize and execute tasks in a high-pressure environment.

Proven leadership skills combined with a strong drive and orientation for results, ability to motivate self and others, and lead others towards a common goal.