Director of Information Security Architecture

Position Title: Director, Information Security Architect

Location: New York, Washington DC, Chicago, Atlanta - hybrid 3x a week

Reports To: Chief Information Security Officer (CISO)

Compensation: Dependent on Location

• New York – up to $275,000
• Washington DC – up to $240,000
• Chicago – up to $240,000
• Atlanta – up to $230,000

Overview:

The Director, Information Security Architect will report directly to the CISO and play a critical role in shaping the security architecture of the firm. This position is essential as the company transitions from traditional on-premises infrastructures to a cloud-first strategy, centered around Microsoft 365. The role requires a deep understanding of cloud security, enterprise-level cybersecurity technologies, and the ability to collaborate effectively across teams.

Key Responsibilities:

• Lead the design and implementation of the firm’s information security architecture, with a focus on cloud-first solutions like Microsoft 365, Azure, and other cloud technologies, while ensuring smooth integration with existing on-premises systems.
• Evaluate, recommend, and implement advanced security tools to strengthen the firm’s cybersecurity posture, particularly in Cloud Security Posture Management (CSPM) and SaaS Security Posture Management (SSPM).
• Architect security solutions based on Zero Trust principles, including but not limited to Secure Access Service Edge (SASE) and Zero Trust Network Access (ZTNA).
• Work closely with Cyber Engineering and Operations teams to ensure that security architecture supports business needs and aligns with broader security objectives.
• Conduct security assessments of existing and proposed systems, identifying vulnerabilities and offering recommendations to meet compliance, legal, and risk management standards.
• Create and maintain detailed documentation for security architecture, design principles, and system configurations.
• Act as a subject matter expert on cloud security, network security, endpoint security, mobile security, and data protection, offering guidance and mentorship to teams throughout the organization.
• Stay informed of emerging security threats, trends, and technologies to ensure the firm's security architecture remains resilient and adaptable to evolving risks.
• Collaborate with stakeholders across IT, legal, and compliance departments to ensure security goals are aligned with organizational objectives.

Key Skills and Expertise:

• In-depth understanding of security frameworks such as NIST CSF, ISO 27001, and CIS Critical Security Controls.
• Proven expertise in designing and implementing cloud security strategies, particularly within Microsoft 365 and Azure environments.
• Hands-on experience in threat modeling, risk assessment, and vulnerability management within hybrid IT environments.
• Excellent communication and collaboration skills, with the ability to engage both technical and non-technical stakeholders.
• Strong analytical thinking and problem-solving capabilities.
• Proactive with a focus on security innovation and operational excellence.
• Self-driven, with the ability to lead strategic initiatives and work independently.
• Detail-oriented, committed to producing high-quality outcomes.
• Flexible and adaptable in a fast-paced, dynamic environment.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field (required); Master’s degree (preferred).
• 10 years of experience in information security, with at least 5 years in a senior architect role (required).
• Experience in regulated industries (e.g., legal, finance) is a plus.
• Relevant certifications such as CISSP, CISM, CCSP, or Azure Security Engineer are strongly preferred.
• Strong knowledge of modern cybersecurity technologies and tools, including CSPM, SSPM, EDR, SIEM, and CASB.

Compensation and Benefits:

This position offers a unique opportunity for professional growth in a collaborative work environment, along with a competitive total compensation package, including performance-based bonuses.

Eligible employees are also provided access to a comprehensive benefits program, including:

• Medical, Dental, Vision, Life/AD&D, Long-Term Care, and Disability coverage.
• Flexible Spending Account (FSA) and Health Savings Account (HSA).
• Healthcare Concierge and Advocacy services.
• Voluntary 401k plan with profit sharing.
• Generous Paid Time Off (PTO) and 10 paid holidays per year.
• Family support benefits, including Pediatric Mental Health, Paid Parental Leave, Fertility Benefits, and Breast Milk Shipping.
• Back-up Child Care, Elder Care, and Tutoring services.
• Wellness programs (Employee Assistance Program, Mental Health, and Well-Being events).
• Retirement planning and professional development programs.
• Anniversary bonus program.
• Commuter benefits and transportation allowance.
• Travel Insurance and more