Novalink Solutions
IT Security Architect Lead - Hybrid Richmond, VA
Novalink Solutions, Richmond, Virginia, United States, 23214
Job DescriptionThe Security Architect Lead will be accountable to produce a body of work for Enterprise Architecture that analyzes business needs, and develop technology deliverables, such as, briefs, patterns, reports, data models and hi-level risk assessments.
The Virginia Department of Transportation's Information Technology Division is seeking a team member to function as a Security Architect Lead. The architect will be accountable to produce a body of work for the Enterprise Architecture Program that analyzes business needs, and develop appropriate technology deliverables, such as, briefs, patterns, reports, data models and hi-level risk assessments to meet them.
The Security Architect Lead will be accountable to produce a body of work for Enterprise Architecture that analyzes business needs, and develop technology deliverables, such as, briefs, patterns, reports, data models and hi-level risk assessments.
Responsibilities:•Documents processes and script narratives/executive summaries.•Create Business focused documentation for circulation among readers with various technical understanding.•Share insight of Security Architecture and IT Governance approaches and implementation methodologies•Research and provide written guidance on alignment with security policies/standards.•Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and exception documentation.•Collaborate with Business areas and cross- functional Enterprise Architects to fully understand business needs and provide strategic consultation on data security and risk-averse implementation.•Partner with architects, other technical team members and to develop roadmaps and strategies to support agency KPIs•Design/Implement Enterprise Security/technology Patterns•Research and share finding of architecture governance, controls, and peer review processed with regards to platform technology, security, and cloud.
Qualifications:•Experience in industry or state information security and IT risk management with a focus on security, performance, and reliability.•Significant performing reviews of proposed changes and projects as it pertains to the alignment of applicable state and/or federal security standards/regulations.•Significant experience in the development, utilizing, and presentation of information security architecture policies, standards and procedures.•Experience with Information Security Frameworks like NIST-800 series and Cybersecurity Framework, COBIT•Experience monitoring IT environments for compliance with information security architecture policies and standards.•Substantial technical experience in 2 or more security areas: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensic techniques, databases, collaboration tools, web & mail services.•Ability to provide input and guide security direction for future designs, information security capabilities, and strategic technology alternatives.•Excellent written and oral communication and presentation skills (possessing the ability to breakdown complex technical terms into everyday language).•Demonstrated ability to lead and work with a broad cross-section of personnel including all levels of management and external entities such as VITA consultants and service providers to explain and lead security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.•Work experience in a fast-paced environment and the ability to acquire new skills/knowledge to meet customer needs.•Thorough understanding of customers priorities and the business criticality of platforms, applications and services.
Required / Desired Skills
Required /Desired
Amount of Experience
Knowledge and application of security best practices
Required
Proficient/SME
Experience in Process Modeling
Desired
Proficient
Knowledge of IT Governance and Compliance
Required
Proficient
Experience in business writing and presenting
Required
Proficient
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s).
Required
Proficient/SME
Requirements
Skill
Required / Desired
Amount
of Experience
Knowledge and application of security best practicesRequired7Years
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s).Required7Years
Experience in business writing and presentingRequired7Years
Knowledge of IT Governance and ComplianceRequired7Years
Experience in Process ModelingHighly desired5Years
The Virginia Department of Transportation's Information Technology Division is seeking a team member to function as a Security Architect Lead. The architect will be accountable to produce a body of work for the Enterprise Architecture Program that analyzes business needs, and develop appropriate technology deliverables, such as, briefs, patterns, reports, data models and hi-level risk assessments to meet them.
The Security Architect Lead will be accountable to produce a body of work for Enterprise Architecture that analyzes business needs, and develop technology deliverables, such as, briefs, patterns, reports, data models and hi-level risk assessments.
Responsibilities:•Documents processes and script narratives/executive summaries.•Create Business focused documentation for circulation among readers with various technical understanding.•Share insight of Security Architecture and IT Governance approaches and implementation methodologies•Research and provide written guidance on alignment with security policies/standards.•Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and exception documentation.•Collaborate with Business areas and cross- functional Enterprise Architects to fully understand business needs and provide strategic consultation on data security and risk-averse implementation.•Partner with architects, other technical team members and to develop roadmaps and strategies to support agency KPIs•Design/Implement Enterprise Security/technology Patterns•Research and share finding of architecture governance, controls, and peer review processed with regards to platform technology, security, and cloud.
Qualifications:•Experience in industry or state information security and IT risk management with a focus on security, performance, and reliability.•Significant performing reviews of proposed changes and projects as it pertains to the alignment of applicable state and/or federal security standards/regulations.•Significant experience in the development, utilizing, and presentation of information security architecture policies, standards and procedures.•Experience with Information Security Frameworks like NIST-800 series and Cybersecurity Framework, COBIT•Experience monitoring IT environments for compliance with information security architecture policies and standards.•Substantial technical experience in 2 or more security areas: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensic techniques, databases, collaboration tools, web & mail services.•Ability to provide input and guide security direction for future designs, information security capabilities, and strategic technology alternatives.•Excellent written and oral communication and presentation skills (possessing the ability to breakdown complex technical terms into everyday language).•Demonstrated ability to lead and work with a broad cross-section of personnel including all levels of management and external entities such as VITA consultants and service providers to explain and lead security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.•Work experience in a fast-paced environment and the ability to acquire new skills/knowledge to meet customer needs.•Thorough understanding of customers priorities and the business criticality of platforms, applications and services.
Required / Desired Skills
Required /Desired
Amount of Experience
Knowledge and application of security best practices
Required
Proficient/SME
Experience in Process Modeling
Desired
Proficient
Knowledge of IT Governance and Compliance
Required
Proficient
Experience in business writing and presenting
Required
Proficient
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s).
Required
Proficient/SME
Requirements
Skill
Required / Desired
Amount
of Experience
Knowledge and application of security best practicesRequired7Years
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s).Required7Years
Experience in business writing and presentingRequired7Years
Knowledge of IT Governance and ComplianceRequired7Years
Experience in Process ModelingHighly desired5Years