Uploaded 3/14/2017 | Enterprise Information Security Architect | Rochester, MI

Uploaded 3/14/2017 | Enterprise Information Security Architect | Rochester, MI

Mike Riley's picture

The Enterprise Information Security Architect works in collaboration with all functional areas relative to information technology
systems, networks, applications, voice and data communications, and computing services within the organization. Provides consulting
and regulatory compliance guidance on strategic and technical initiatives and is knowledgeable of information security architecture
best practices and regulatory and compliance requirements that impact security for the enterprise.

This position will work in a collaborative effort with IT to assure security programs and technical controls are in compliance with
policies, applicable laws and regulations. Additionally, this role will work closely with Network Security Engineers and Analysts to
ensure developed designs can be implemented and operationalized.
The Enterprise Information Security Architect reports to the Deputy Information Security Officer.

 Coordinate with various project teams to communicate the necessity of security requirements and design constraints.
 Analyze and make recommendations to improve network, system and application architectures, designs, and
 Responsible for the creation, review, updating, implementation and documentation of the Security system and application
security architecture and data flow diagrams
 Contributes to the development and maintenance of the Information Privacy and Security Office Services Catalog and
Corporate Information Security policies and procedures.
 Design, review, approve, implement and support appropriate information security architecture, including but not limited to:
 Juniper Firewalls
 IDS and IPS
 Netscaler Load balancers
 Blue Coat Proxies
 Provide expertise in planning, tracking and implementation for security projects and audit activity
 Provides support and point of escalation for the Network Security Services group and assist with complex issue resolution.
 Leads and is accountable for security planning for future application system implementations.
 Stay current with industry trends relating to information security.
 Provide risk based analysis of IT infrastructure and IT systems.
 Manage and maintain the Network Security Services Test Lab.
 Mentor and guide junior members of the team to improve quality of services.
 Bachelor's Degree in Information Systems, Computer Science (or equivalent) is required.
 Five (5) years direct and hands-on experience in network layer technologies and security architecture designs.
 Ten (10) years of overall work experience in IT, Information Security or related field.
 HIPAA (or SOX), Payment Card Industry Data Security Standard (PCI DSS), knowledge required
 Highly seasoned in organizational, time management, decision making and problem solving skills
 Working knowledge of IT systems and functions, process development, mobile device management, change management,
and software review processes
 Strong interpersonal skills to interact with customers, senior level personnel, subordinates and team members.
 Strong organization skills to prioritize work, balance and lead complex initiatives.
 Strong experience performing detailed analysis of network security infrastructure components (networking, firewalls, servers,
IPS/IDS) and assessing the effectiveness of its security implementation.
 Strong experience of the TCP/IP protocol stack and application protocols such as DHCP, SNMP, DNS, etc. IPSec and SSL
VPNs along with SSL/TLS protocol understanding.
 Experience planning security systems by evaluating network and security technologies; developing security requirements for
local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, IPSs, WAP and
related security and network devices; designing public key infrastructures (PKIs), including use of certification authorities
(CAs) and digital signatures as well as hardware and software; adhering to industry standards.
 Experience reviewing network and security architectures and providing guidance for deployment of new technologies and
integration with existing technologies.
 Strong leadership skills to effectively mentor and lead junior level personnel.
 Strong hands on architect/engineering level expertise of Security DMZ and border security architecture
 Experience with Visio programs to create detailed physical and logical network diagrams Strong analytical and creative
problem solving skills for design, creation and testing of complex systems
 Strong communication skills to communicate systems proposals to management and customers and provide systems
diagnoses and resolution for current systems.
 A service focused team player who has the ability to lead and mentor team members.
 Excellent customer service and interpersonal skills demonstrated both over the phone and face-to-face in order to
communicate technical information in non-technical terms.
 Consensus building and collaborative interpersonal skills.
 Good presentation skills.
 Ability to work under pressure, establish priorities and respond with urgency.
 Self-motivated with excellent verbal and written skills
 ITIL v3.0 certification preferred or within 6 months
 Applicable certification strongly preferred (e.g., CISSP, CISSP - ISSAP, etc.) or obtained within 6 months of employment

If interested, reply with resume to:
David Nelson, Managing Director
Fax: 248-650-0772