Information Security Architect

  • Negotiable
  • Manhattan, NY, USA
  • Contract, Full time
  • Michael Page International - US
  • 23 Sep 16

The Information Security Architect will evaluate and advise on projects with significant impact and where close coordination and communication is required with other IT teams such as network, database management, server, desktop and application development. This person will help train and mentor other members of the team.

Our client is an Investment Management firm


  • Lead efforts to design solutions to meet unique business requirements connecting systems of high complexity and with companywide impact assisting with the initial integration and implementation of solutions
  • Serve as information security subject matter expert as well as an escalation point for other team members, security incidents and service requests
  • Provide technical support for complex, medium to high risk systems problems
  • Instill cooperation and/or resolve problems on security related activities that span other areas such as network, database management, applications development, and other systems related areas
  • Lead or direct efforts to rack, stack and install security equipment in any company location including enterprise data centers
  • Assist in designing and supporting the overall security architecture of the enterprise systems environment
  • Participate in a peer review process to ensure proposed changes are implemented following Company security standards.
  • Provide the highest level of support for troubleshooting incidents and update problem records in an incident tracking system.
  • Stays abreast ofcurrent security threats and new security technologies to integrate into security architecture design where appropriate


  • Bachelor's degree with a degree in Computer Science, Computer Engineering, EE or comparable discipline preferred
  • 8+ years of hands on technical experience in an IT Security discipline
  • 4 years of hands on firewall design and implementation experience (Cisco ASA/PIX series devices preferred)
  • Expert level knowledge of security principles and technologies
  • Experience evaluating, designing and implementing security solutions
  • Fluent in risk identification, categorization, communication and mitigation
  • Skilled in threat modelling and familiar with using frameworks to guide decision making based on risk tolerance and business objectives
  • Extensive knowledge with relevant experience in at least five of the following:
  • Third party connectivity architecture and design
  • DMZ / network segmentation design best practices
  • Intrusion Detection/Prevention System tuning
  • Security hardening techniques
  • F5 load balancing / application firewall design
  • Antivirus / Endpoint protection design
  • Vulnerability scanning lifecycle management
  • Penetration testing / remediation
  • Proxy architecture / design
  • Privileged access management architecture / design
  • Single Sign On (SSO) architecture / design
  • Network Access Control (NAC) architecture / design
  • High level of knowledge in other technical areas such as desktops, servers, database management and networking so incumbent can represent security on major cross functional problems that span these areas
  • Broad knowledge of diagramming tools and monitoring tools
  • Excellent organizational skills and superior troubleshooting / problem solving ability
  • Good interpersonal skills and a team player attitude
  • Ability to handle multiple tasks and prioritize appropriately
  • Ability to explain complex problems and concepts to all levels in the organization

Job Offer

Commensurate on experience