Talent.com
Enterprise Security Architect

Enterprise Security Architect

Lockton CompaniesKansas City, United States of America
job_description.job_card.30_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

The Enterprise Information Security Architect plays an integral role in defining and assessing Lockton’s global security strategy, architecture, and practices. They will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services. They will be responsible to align global information security strategy with business goals and work towards finding the optimum balance between information security risks and controls while enabling the business. Working closely with cross-functional teams, they will provide expert guidance on security best practices, risk management, and compliance requirements. The scope of this role is global, and they will report directly to the Global Chief Information Security Officer.

Responsibilities :

  • Security Architecture Design :

Develop and maintain comprehensive security architecture blueprints that align with business objectives, technology strategy, and industry standards. Design solutions to protect against a wide range of security threats and vulnerabilities.

Develop a system-wide, layered defense-in-depth information security strategy plans and roadmaps based on sound enterprise architecture practices.

Develop and maintain cloud security strategy and architecture which aligns with business goals.

Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

  • Risk Assessment and Management :

    • Conduct risk assessments to identify potential security risks and develop mitigation strategies. Collaborate with stakeholders to prioritize risks and implement appropriate controls.

    Determine baseline information security configuration standards for operating systems (e.g., OS hardening), network segmentation, identity and access management (IAM), and other areas, as needed.

    Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.

  • Security Tool Evaluation and Integration :

    • Evaluate security technologies and tools to enhance Lockton’s security posture. Integrate new security solutions into existing infrastructure and workflows ensuring the enterprise data, processes and brand are secure while enabling the Business.

    Identify alternative solutions and mitigating controls when necessary.

  • Security Policy Development : Define and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
  • Incident Response and Forensics : Contribute towards development of incident response plans and procedures. Participate in investigations into security incidents, analyze root causes, and implement corrective actions to prevent future occurrences.
  • Collaboration and Communication :

    • Work closely with cross-functional teams, including IT, engineering, operations, and compliance, to align security initiatives with business objectives. Communicate security risks and recommendations to executive leadership in a clear and concise manner.

    Lead relevant projects and initiatives as needed and serve as an information security subject matter expert (SME) for complex and high visibility technology initiatives.

    Collaborate with regional IT leaders across the global areas of operations.

  • Minimum 7 years of information security experience
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field.
  • Proven experience in enterprise security architecture (minimum 4 years), with a focus on designing and implementing security solutions in large-scale environments.
  • Strong knowledge of security principles, protocols, and technologies, including encryption, authentication, access control, and network security.
  • Hands-on experience with security tools such as SIEM, IDS / IPS, DLP, endpoint protection, and vulnerability management systems.
  • Familiarity with industry standards and regulations, such as ISO , NIST, GDPR, HIPAA, and PCI DSS.
  • Excellent analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies.
  • Strong communication and interpersonal skills, with the ability to collaborate effectively with diverse stakeholders at all levels of the organization.
  • Relevant certifications (e.g., CISSP, CISM, CEH, CCSP) are a plus.

    • Personal Attributes :

  • Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms
  • Foundational technical expertise, including both business acumen and strategic thinking, as well as the ability to identify issues and provide innovative problem solving
  • Passionate about driving and sustaining change through committed leadership
  • Creative and results-oriented, who is good at balancing multiple priorities and issues
  • Team player up and down the organizational structure, across countries and IT / Security departments
  • Ability to form open, effective, and trusting relationships with global IT leaders
  • Provides a high level of professional service to customers (both internal and external) consistent with Lockton standards and procedures
    • serp_jobs.job_alerts.create_a_job

    Enterprise Architect • Kansas City, United States of America