Security Architect

Job Description:

XOR Security is looking for a Security Architect to perform the following duties:

• Responsible for collaborating with cross-functional teams to design and recommend security measures to protect information assets in a manner consistent with security objectives. Conduct technical review of and input to the designs of systems and applications ranging from on-premises to SaaS for adherence to Information Security Policies and Standards, Information Security Reference Architecture, and Secure Design Principles. Support governance review processes with security architecture and technical design reviews to assess risk and alignment with security architecture standards. Develop and maintain security reference architectures, security design patterns, and secure design principles. Develop and maintain security architecture documentation using a threat-based and zero-trust approach.

Basic qualifications

• 8+ years of experience defining, developing, and maintaining security architecture reference models, design patterns, segmentation models, and solution architectures, including identity management, encryption, authentication, access control, and logging controls
• Experience with securing systems and applications leveraging security frameworks, including NIST or CSA, as they align to architecture frameworks, including TOGAF, BOST, SABSA, or ZTA, in cloud and non-cloud environments
• Experience with assessing risk of conceptual system architecture designs and providing recommendations to mitigate risk through security architecture and engineering principles
• Ability to drive consensus amongst peers and generate the insights necessary to facilitate process and technology changes
• Ability to collaborate with project teams effectively to design, implement, integrate cybersecurity requirements and technology solutions, and develop high quality implementation plans and roadmaps
• Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
• Bachelor's degree

Additional qualifications:

• Candidates with active High-Risk Public Trust clearances are strongly desired
• Knowledge of zero trust architecture principles and concepts for a data-centric approach to fine-grained security controls between users, systems, data, and assets
• Knowledge of technology integration processes
• Knowledge of IT Security tools and functions, including IPS/IDS, Firewalls, Antivirus and Antimalware software, Vulnerability Scanning, Penetration Testing, and behavioral and network monitoring
• Ability to brief technical and non-technical audiences and communicate on security threats, vulnerabilities, and risks
• Ability to work with subject matter experts and core engineering and product teams to devise new and innovative solution constructs and consistently update against security trends
• Ability to lead groups of people towards a common direction and engage others to facilitate resolutions
• Possession of excellent problem-solving skills
• CISSP, CISA, CISM, or related security Certification

Closing Statement:

XOR Security offers a very competitive benefits package including paid health insurance coverage from first day of employment, 401k with a vested company match, vacation and supplemental insurance benefits.

XOR Security is an Equal Opportunity Employer (EOE). M/F/D/V.

Citizenship Clearance RequirementApplicants selected may be subject to a government security investigation - Applicants must meet eligibility requirements – US CITIZENSHIP REQUIRED.