Lead IT Security Architect

Great Opportunity with the largest and oldest independent company of its field in the United States. Headquartered in Cleveland, the company is expanding into additional Midwest cities.  Great benefits and perks! Join our team and advance your career with us.

The Lead IT Security Architect (LSA) provides a high level of technical and subject matter leadership and is a recognized expert within Information Security sector.  The LSA works closely with the Manager Security Services and is required to lead the design, evaluation, monitoring, and maintenance of the information security systems. The position will be required to lead the development of security solution architecture and integration planning, along with the design of functional specifications.

A key priority for this position will be to ensure that new security solution technologies are evaluated to keep pace with the ever-changing threat landscape.  The position is required to provide recommendations to keep the Company’s security posture aligned with industry standards and best practices, while also ensuring the most value and efficiency is delivered from current assets.

The Lead IT Security Architect will be heavily involved in project related configuration and installation, requiring the position to lead functional teams and delegate tasks to ensure work is done efficiently and on time.  This role is a highly visible position that works closely with a variety of team members including executives, managers, network engineers, application administrators. As such, this role will require a person with exceptional communication, organizational, technical, and people skills.

The overall goal of this position is to develop, implement, and maintain strategic security solutions in support of corporate business initiatives, while providing a sustainable world class security suite across the enterprise.

Responsibilities:

• Is the recognized technical and subject matter expert for the Company’s Security Systems.
• Leads the security review process and makes formal recommendations for new and existing technologies.
• This role will be the subject matter and technical expert responsible for vulnerability management, privileged account management, end point protection, email filtering, threat prevention and detection, incident response, threat intelligence, security vendor management (and working with outside vendors on security assessments and penetration testing), and responding to a centralized security information and event management system (that is externally managed).
• Identifies and evaluates potential threats and vulnerabilities (either detected internally or publicly announced) that could impact the company’s applications or infrastructure and recommends mitigating controls to reduce the companies risk.
• Responsible to detect and respond to security events and is the Security Team Incident Response technical lead.
• Continues to increase the security posture of the company by leveraging the enterprise Security Event and Incident Management tools (SIEM), perimeter email defense, vulnerability management platform, anti-virus, intrusion detection, and password/account management solutions.
• Leads the recovery of our security solutions in the annual Disaster Recovery Test.
• Can solve complex problems by analyzing, designing, and implementing cost-effective solutions per user specifications.
• A commitment to maintain and enhance their extensive knowledge and understanding of information security, risk management and regulatory compliance topics. Maintains professional/technical currency of information security knowledge.
• Lead for the security information and event management process for all monitoring, logging, alerting, auditing and reporting on threats, vulnerabilities and breaches. Working with managed service provider, determine the appropriate thresholds and monitor the environment for anomalous behavior.
• Drives assessments of the business compliance to information security policy in the areas of manual or automated processes, procedures and access control.
• Modifies and recommends security systems to accommodate additional service needs or required changes.
• Leads efforts with internal and external audit to ensure Company security standards and practices meet requirements.
• Performs additional duties as directed by the Manager Security Services, Director Enterprise Services, and Chief Information Officer.
• Delegates tasks and provides support for other team members as required.
• Ability to respond to emergency service calls at any time outside of normally assigned work hours.
• Willingness to travel up to 10% and be flexible to work various hours to accommodate international business needs.

Requirements

Education:

• Bachelor’s Degree in Information Systems, Computer Science or an equivalent degree.
• Certification in one or more of the following areas:
• CISSP, GSE, GCED, GPPA, GCIA, GRID, GCIP, GDAT, GMON, GDSA, GCIH, GEVA, SCYBER, CNDA
• Manufacturing industry experience is preferred

Experience:

• 10+ years of security experience within a corporate IT environment.
• Experience with vulnerability management toolsets, hacking toolsets, and security information and event management systems (Qualys, Tenable, and AlienVault highly preferred). Experience developing dashboards and reports to measure the company’s security posture.
• Experience managing and maintaining end point protection and application security platforms (Cylance, SCCM, DefendPoint, and highly preferred).
• Experience with managing a privileged account management solution (CyberArk highly desired).
• Previous experience with administering email filtering and threat prevention modules (ProofPoint highly preferred).
• Experience leading a threat detection and incident response program.
• High level of security vendor management experience and the ability to work with these vendors on security assessments and penetration testing.
• Familiarity with the following technologies: Identity Management and authentication platforms, authorization, password and privilege management, access control, next generation firewalls (Palo Alto), virtual private networking, and computer network defense, firewall and router configuration, switches, secure network architecture, PKI, IPSEC, SSL, SSH, SMTP, FTP, WAN, Radius, F5, Sniffer technologies, modern Windows Operating Systems (2012-19/, 7-10), modern Linux based Operating Systems (Red Hat, Oracle Linux), Vulnerability Management platforms (Qualys), Office 365, Active Directory, LDAP.
• Expert level ability to diagnose/troubleshoot on various security technologies.
• Familiarity with securing ISC or SCADA systems a plus.

Submit resume to:

Nicole Melda Mitchell

LRSolutions, LLC is an Equal Opportunity Employer. We are dedicated to sustaining an environment in which diversity is valued and differences are strengths.  All qualified applicants will receive consideration for employment and will not be discriminated against based on race, color, religion, sex, national origin, age, disability, gender identity or expression, genetic information or sexual orientation

Must be legally authorized to work in the US without sponsorship for employment visa status now or in the future.

Please no third party recruiting agencies.