Cyber Security Architect

Title: Security Architect/Engineer

Location: Detroit, MI (On-site)

Visa – GC and USC

Tasks

• Works with the senior members of the Infrastructure Department to help set strategic direction for information security initiatives, processes and standards
• Researches, evaluates and drives next-generation security technologies and concepts to keep security ahead of the curve
• Builds relationships and collaborates with other architects across IT to ensure all visions are aligned
• Conducts and attends project meetings to provide security and governance input throughout project lifecycles
• Helps to influences decision-makers in the areas of secure network design, access/authentication controls, IaaS and others
• Coordinates risk assessments of IT projects and systems
• Creates, refines, delivers and evangelizes information security standards to be used throughout the enterprise that balance business needs and external requirements
• Works with Infrastructure Team Architects to create end-to-end security solutions involving a mix of technical and organizational requirements
• Monitors changes in the legislative, regulatory and contractual landscape to ensure that the information security program is always at least one step ahead
• Performs other duties as assigned by Supervisor.

Knowledge, Skills and Abilities Required:

• Ability to maintain strict confidentiality
• Excellent written and verbal communication skills, including the ability to interact with all stakeholders
• Ability to think analytically and creatively

Skills Required

• 3-5 years - Experience in security engineering, technology or an architect role within a complex business environment
• 3-5 years - Experience with hosted and cloud services, especially SaaS and PaaS, and the related security implications and control approaches
• Knowledge of the intricacies related to NIST, FERPA, HIPAA, SOX, PCI and state privacy la
• Strong understanding of security tenets, such as encryption/key management, network design, access control and incident containment
• Experience in other parts of IT as an administrator or engineer in a non-security role
• Experience with hosted and cloud services, especially SaaS and PaaS, and the related security implications and control approaches
• Thorough understanding of risk management principles and processes
• Experience in policy/standard creation and acceptance

Skills Desired

• Bachelor's degree in a related field
• Certifications such as CISSP, CISA, GSEC