Information Security Architect - Product Engineering

3 days ago

Apply Now

Receive Emails with Similar Jobs

Iron Mountain

WebsiteLinkedInAll Job Openings

Information Management • Document Management Solutions • Secure Shredding • Data Protection • Archiving

10,000+

Description

• Architect Security Solutions: Design, implement, and maintain security architectures for network, cloud, and application environments to safeguard sensitive data and prevent unauthorized access. • Risk Management: Identify and evaluate security risks in both existing and future technology environments. • Compliance and Regulatory Alignment: Ensure that security controls meet regulatory and legal requirements, such as GDPR, HIPAA, PCI-DSS, and SOC 2 compliance. • Security Policy Development: Collaborate with senior leadership and cross-functional teams to define, establish and enforce security policies, procedures, and best practices. • Incident Response: Develop and enhance incident response strategies, ensuring the organization is prepared to effectively respond to security breaches. • Cloud Security: Provide security leadership in cloud services (AWS, Azure, GCP). • Security Assessments: Conduct regular security reviews and assessments, including vulnerability scanning, penetration testing, and risk analysis. • Collaboration & Stakeholder Engagement: Work closely with IT, legal, compliance, and other departments to integrate security into all processes. • Emerging Threat Analysis: Stay current with the latest cybersecurity trends, threats, and technologies.

Requirements

• 7+ years of experience in Information Security, with a minimum of 3 years in an architecture or design role. • Extensive knowledge of information security standards (ISO 27001, NIST, CIS). • Proven experience with security frameworks and regulatory requirements, including PCI-DSS, GDPR, and HIPAA. • Experience designing security architectures for cloud environments (AWS, Azure, or GCP) and securing hybrid systems. • Certifications: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or equivalent certifications preferred. • Technical Skills: Strong expertise in security protocols, encryption, and identity management (IAM). • Hands-on experience with SIEM tools (e.g., Splunk, IBM QRadar) and threat detection technologies. • Proficiency in network security, firewalls, VPNs, IDS/IPS, DLP, and endpoint security solutions. • Deep understanding of cloud security controls and technologies. • Excellent verbal and written communication skills with the ability to articulate complex security concepts to non-technical stakeholders. • Strong problem-solving and analytical skills. • Ability to work collaboratively in a cross-functional environment.