Job Description
Job Responsibilities:
- Lead the development and implementation of the information security and data protection architecture strategy and roadmap, ensuring alignment with business objectives, regulatory requirements, and industry best practices
- Provide technical leadership and guidance to the information security team, overseeing the design, implementation, and integration of security solutions across the organization
- Collaborate with business units, IT teams, executive leadership and vendors to communicate security risks and strategies, assess security requirements, evaluate solution options, and architect secure systems and applications that meet business needs while maintaining a strong security posture
- Lead the evaluation, recommendation and implementation of new security technologies and tools
- Define and enforce information security standards and frameworks, ensuring consistent security practices across all technology domains and projects
- Collaborate with enterprise architects, business and IT stakeholders to integrate security controls and requirements into overall IT architecture frameworks, ensuring the security-by-design principle is followed throughout the development and implementation lifecycle
- Develop comprehensive security architecture processes and artifact templates, and actively influence their adoption and use across the organization to ensure consistency, efficiency, and alignment with security standards
- Conduct security architecture reviews and risk assessments, identifying potential vulnerabilities, weaknesses, and gaps in existing systems and proposing effective solutions to mitigate risks
- Serves as a mentor and role model to security architects and other security team members
- Foster a collaborative and inclusive environment that encourages continuous learning and skill development
- Guide team members in best practices, emerging technologies, and evolving threats
- Represents the organization externally, participating in security forums and conferences to stay updated on the latest trends, share knowledge, and contribute to industry thought leadership
Responsibilities
Behavioral Competencies:
- Global Perspective
- Action Oriented
- Drives Results
- Collaborates
- Communicates Effectively
- Customer Focus
- Decision Quality
- Nimble Learning
- Develops Talent
- Directs Work
- Ensures Accountability
- Manages Complexity
Technical Skills:
- Network Security
- Incident Response
- Security Monitoring
- Vulnerability Management
- Threat Intelligence
- Identity and Access Management
- Data Protection
- AI Security
- Encryption Techniques
- Security Assessments
- Security Engineering
- API Security
- Architecture Modelling
- Cloud Security
- Enterprise Security Architecture
- IT Operations and Infrastructure Services
- Secure Software Development
- Agile Methodologies
- Network Architecture
- Project Management
Work Requirements*:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
- Ability to work effectively in an office, hybrid, or remote work environment for 40+ hours per week (including sitting, standing, and working on a computer for extended periods of time).
- Ability to communicate effectively in a collaborative work environment utilizing various technologies such as: telephone, computer, web, voice, teleconferencing, e-mail, etc.
- Ability to publicly speak.
- Ability to travel as required
*The information under these attributes is to be provided by Westfield
Qualifications
- Licenses and Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Information Systems Security Architecture Professional (ISSAP) or other relevant certifications
- 10+ years of experience in Information Security or a related field.
- Bachelor's degree in computer science, Information Technology, or a related field and/or commensurate experience. Master's degree in related field is preferred.
