Information Security Architect

Job Title: Information Security Architect"
Location: Quincy, Massachusetts
Job Type:  Full-Time
Department: Global Cybersecurity  
Reports To: David Collins

Job Summary:
We are looking for a highly skilled Information Security Architect with a deep expertise in data protection to join our dedicated information security team. The ideal candidate will have extensive experience in building robust security architectures focused on protecting data both technically and operationally within a highly regulated environment. This role emphasizes the implementation of advanced security frameworks, including cryptography, data protection strategies for data at rest, in motion, and in use, and the deployment of technologies such as Data Security Posture Management (DSPM), Cloud Access Security Brokers (CASB), and Security Service Posture Management (SSPM). The candidate will play a key role in navigating the complexities of audits and compliance initiatives to safeguard our sensitive information.
 

Key Responsibilities:
1. Architectural Design and Implementation:
  - Define, design, and maintain the security architecture for data protection, incorporating industry best practices and regulatory requirements.
  - Develop and implement security models and frameworks that support data security across all phases of its lifecycle, including data at rest, in motion, and in use.
2. Data Protection Strategies:
  - Design and deploy cryptographic solutions and protocols tailored to protect sensitive data and ensure compliance with industry regulations.
  - Develop and enforce policies for the secure handling, transfer, and storage of data, leveraging solutions like DSPM, CASB, and SSPM.
3. Regulatory Compliance and Risk Management:
  - Ensure that all security architectures align with relevant compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) and industry standards.
  - Conduct regular risk assessments and audits of data protection measures, validating their effectiveness and compliance with regulatory demands.
4. Incident Response and Monitoring:
  - Collaborate with incident response teams to design procedures and develop response plans for potential data security incidents.
  - Implement continuous monitoring mechanisms for data usage, detecting anomalies in data access patterns for proactive risk management.
5. Collaboration and Stakeholder Management:
  - Work closely with IT teams, legal advisors, and compliance officers to integrate security measures smoothly into systems and operations.
  - Engage with stakeholders at all levels to communicate security architecture needs and promote a strong security culture.
6. Thought Leadership and Innovation:
  - Stay current with emerging trends, threats, and technologies in data protection and information security.
  - Provide guidance on cutting-edge security technologies and strategies, ensuring that our data protection initiatives leverage the latest advancements in the industry.
 

Qualifications:
- Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related fields. A master’s degree is preferred.
- Experience: 
 - Minimum of [7-10] years of experience in information security, with a strong focus on security architecture and data protection.
 - Proven experience within a highly regulated industry (financial services, healthcare, government, etc.) and an understanding of its compliance landscape.
- Certifications:
 - Relevant certifications such as CISSP, CISM, CISA, CCSP, or similar recognized credentials in cybersecurity and data protection.
- Technical Skills:
 - In-depth knowledge of cryptographic methods and data protection architectures.
 - Familiarity with advanced data security frameworks including DSPM, CASB, and SSPM.
 - Strong understanding of network security protocols and practices, cloud security, and information assurance.
 

Soft Skills:
- Exceptional analytical skills and a strong attention to detail.
- Excellent communication and collaboration skills to work with both technical and non-technical stakeholders.
- Ability to manage multiple projects and priorities in a fast-paced environment.
 

Why Join Us?
- Join a pioneering organization dedicated to innovative security solutions and data protection.
- Work in a collaborative environment that values creativity and problem-solving.
- Competitive salary and comprehensive benefits package, including [insert relevant benefits].
If you are a forward-thinking information security professional with a passion for architectural excellence and protecting data integrity within a regulated environment, we invite you to apply for this exciting opportunity.

Salary Range:

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

State Street's Speak Up Line