Manager, Security Architect

JOB SUMMARY

The Information Security Architecture and Engineering Manager leads a team of highly talented and diverse security architects and engineers.  The manager is responsible for identifying, architecture, driving the build and integration of Open Source and off-the-shelf security technologies to create an effective and automated set of detection, prevention and resiliency capabilities. Together, these will provide our customers safe, secure, and compliant corporate services. You will provide the engineers with guidance and career development, ensuring that they have the right support to be successful in their programs.

Your team will provide employees a trustworthy environment to conduct business at Informatica and be accountable for building and maintaining our security posture. You and your team are ultimately responsible for earning and maintaining customers trust at Informatica and enabling the business to take smart risks.

The manager will have individual contributor responsibilities on complex programs and will need to participate closely with the SIRT Architect and Enterprise Architect(s) as well as the VP, CISO and Sr. Director of Information Security to shape and implement the controls that protect our customers.

ESSENTIAL DUTIES & RESPONSIBILITIES

• Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
• Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
• Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
• Plans best security practices for cloud platform initiatives according to industry standards (CSA, NIST)
• Architect security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing support; completing documentation.
• Evaluate security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements.
• Prepares system security reports by collecting, analyzing, and summarizing data and trends.
• Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
• Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.
• Calibrate security control systems with the desired risk posture for our enterprise and our customers
• Architect security controls to reduce our attack surface, proactively seek out vulnerabilities, and decrease response and recovery times. Partner with DevOps and Operations teams to integrate the controls into our orchestration systems to ensure a consistent infrastructure state
• Contribute and collaborate with other Information Security team members across the broad spectrum of information security programs, such as Threat & Vulnerability Management, Security Response, Information Protection, Governance and Compliance.
• Provide career development and mentoring for the security architects and engineers that report to InfoSec colleagues.
• Act as a member of the Information Security management team to shape the direction of the program and prioritize the work activities of the Information Security team.
• May perform other duties and responsibilities necessary to support and protect the business
• Manage relationships with contract suppliers, including technology vendors, cloud service providers, and staff augmentation providers.  Define RFP and manage proposal processes for service adjustment.  Measure and hold suppliers accountable for the delivery of services that support Informatica objectives.
• Build interface points with risk management and operational incident management to scale ‘landing points’ for security incidents and maintain transparency across all three processes
• Provide management oversight for sec engineers/junior architects
• Manage and increase the effectiveness and efficiency of the Identify and Protect team, through improvements to each function as well as coordination and communication between support and business function

KNOWLEDGE & REQUIREMENTS

·       Strong competency in articulating and persuading counterparts to adopt appropriate security architecture & controls frameworks.

·       Experience documenting and implementing cyber security frameworks

·       Risk assessment reporting

·       Knowledge of proper authorization procedures

·       Advanced knowledge of domain specific threats and how to circumvent them

·       ISO 27001/27002, ITIL and COBIT frameworks

·       Advanced knowledge of enterprise and security architecture

·       Knowledge of all hardware systems at play in your organization: Firewalls, VPNs, LANs, WANs, routers, etc.

·       Central concepts related to routing, authentication, and proxy services

·       How to audit risk associated with cloud-based solutions 

EDUCATION & EXPERIENCE REQUIREMENTS

·       Bachelor’s degree in Computer Science or Engineering field; Master’s degree preferred

·       2-5 year’s experience in a combination of Information Security, risk evaluation, Security Response, Cyber security engineering, IT Architecture, Application Operations, or DevOps capacity; minimum 4 years of InfoSec experience.

·       Strong experience in Information security Architecture and cybersecurity frameworks (SABSA, NIST)

·       Exceptional communications skills both written and verbal.

·       Experience using multiple platforms and architecture Windows, Linux and OSX.

·       Experience with cyber security tools

·       Practical experience with security architecture in multiple cloud environments: AWS, Azure, and VMWare.

·       Strong experience with SIEM (writing and documenting rules), Security Orchestration & Vulnerability Management.

·       Experience in planning and documentation of IT systems.

·       Experience with threat modeling and risk analysis.

·       Regulatory compliance experience in HIPAA, SOC2, ISO27k environment preferred