Principal Cybersecurity Architect - Business Wire Remote Bookmark Share Print 32 1 2

Listing Description

At Business Wire, we are committed to building a world-class cybersecurity program that sets the standard for excellence in the industry. Our approach is rooted in innovation, resilience, and a deep understanding of the evolving threat landscape while ensuring our core values of attitude and aptitude, collaboration and integrity are at the forefront of all we do. As we continue to grow and protect our global operations, we are seeking top-tier talent to join us in this mission.
 
The Principal Cybersecurity Architect will lead the development and maintenance of a robust enterprise security architecture plan. This critical role will involve close collaboration with leaders across cybersecurity, IT, and operations to ensure the coordination of services and the formulation of a holistic and adaptive security strategy. The Principal Cybersecurity Architect will be instrumental in ensuring that Business Wire maintains a leading architecture that evolves with changing environments, industry requirements, and threats to enhance overall security performance.

What You Will Do
  • Enterprise Security Architecture Strategy:
  • Lead the development and execution of a comprehensive and innovative enterprise security architecture strategy.
  • Ensure that stakeholder security requirements are thoroughly addressed across all aspects of enterprise architecture, including reference models, segment and solution architectures, and supporting systems.
  • Integrate cybersecurity policies with IT architecture to ensure a cohesive and secure enterprise environment.

  •   Systems Development Life Cycle:
  • Ensure security is integrated throughout the system development life cycle and that continuous monitoring practices are in place.
  • Translate technological and environmental conditions, such as laws and regulations, into secure system designs and processes.
  • Ensure all new systems are deployed in alignment with established architecture standards.

  •   Holistic Security Architecture Development:
  • Develop and maintain business, systems, and information processes that support Business Wire’s mission and enterprise needs.
  • Establish and document IT rules and requirements that describe baseline and target architectures, ensuring alignment with organizational goals.

  •  Compliance with Industry Standards:
  • Ensure that the enterprise security architecture complies with major industry frameworks, including the NIST Cybersecurity Framework.
  • Continuously monitor and update the security architecture to maintain alignment with evolving industry standards and best practices.

  •  Acquisition Life Cycle and Security Integration:
  • Document and address the organization’s information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.
  • Review IT acquisitions for compliance with architecture and policy requirements, ensuring that new systems or interfaces do not compromise the security posture of the current environment.
  • Conduct post-integration reviews to assess the effectiveness of newly integrated security solutions, identifying areas for improvement and driving continuous enhancements.

  •  Security Architecture and Risk Management:
  • Perform security reviews to identify gaps in the security architecture and develop comprehensive security risk management plans.
  • Provide expert advice on project costs, design concepts, and design changes to ensure that existing systems maintain proper security controls and compliance with architecture policies.
  • Develop metrics and performance indicators to evaluate the success of integration efforts, ensuring that security solutions deliver expected outcomes and contribute to the overall security posture.

  • Integrated Security Tools and Technologies:
  • Lead the creation of a strategy for a comprehensive suite of integrated and dynamic security tools and monitoring technologies.
  • Support system authorization, continuous monitoring, threat detection and response, and other enterprise-level security activities.
  • Continuously assess the effectiveness of integrated security tools, making recommendations for optimization or replacement to ensure the organization remains protected against evolving threats.

  •    Continuous Innovation in Security Architecture:
  • Drive innovation by researching emerging cybersecurity technologies, trends, and threats. Proactively evaluate their applicability to the organization’s security architecture and recommend innovative solutions to enhance the security posture.
  • Lead the exploration of advanced security technologies such as zero-trust architectures, artificial intelligence, machine learning, and blockchain to determine their potential integration into the enterprise security framework.
  • Develop and maintain a forward-looking technology roadmap for security architecture, identifying opportunities for the adoption of new technologies and methodologies that can enhance security and operational efficiency.

    • What You Will Need
  • A minimum of 10 years of experience in cybersecurity architecture, with at least 5 years in a senior or principal architect role.
  • Proven experience in developing and implementing enterprise security architectures and strategies.
  • Excellent communication skills, with the ability to articulate complex security concepts to both technical and non-technical stakeholders.
  • Expertise in re-architecting and refactoring legacy applications to improve security, scalability, and performance as part of a broader digital transformation initiative.
  • Deep understanding of cloud-native security controls, such as identity and access management (IAM), encryption, network security, and security monitoring in cloud environments.
  • Experience in automating cloud security tasks such as compliance checks, vulnerability assessments, and threat detection using cloud-native and third-party tools.
  • Skills in innovation and finding solutions to complex problems
  • Proven experience with software development methodologies, including waterfall, agile, DevSecOps;
  • Strong understanding of the NIST Framework(s), Open Group Architecture Framework (TOGAF), Sherwood Applied Business Security Architecture (SABSA), MITRE ATT&CK Framework, Open Security Architecture (OSA) and other relevant industry standards.
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. A Master’s degree is preferred.

    • What We Offer
  • The base salary range for this position is $180K to $200K/year.  Offered salary will be determined by several factors, including but not limited to: applicant’s education, experience, knowledge, skills and abilities, as well as internal equity and alignment with geographic market data.  Business Wire reserves the right to modify this salary range at any time.

  • Business Wire’s total rewards include:
  • Ability to work remotely
  • Excellent health benefits that begin on your first day of employment
  • $100 monthly fitness allotment, a tuition reimbursement program, and enhanced mental health resources
  • 401(k) plan with generous company match, and annual profit sharing contribution (subject to company performance)
  • PTO, Floating Holidays, Wellness Day Off, Birthday Day Off, and more!

    • Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!