Security Architect

Job Title: Security Architect

Location: Boston, Chicago , or Dallas

Position Summary

The Security Architect is an individual contributor responsible for helping to design, assess, build and enable capabilities in security that are cohesive and instrumental to securing all forms of technical infrastructure, applications, our data and communications for Bain and its subsidiaries. The Architect will be an integral part of the Bain Cybersecurity team and will be involved in driving efforts in organizing, building and ensuring adoption of rigorous security, engineering and governance principles in our technology. The architect works closely with cybersecurity leadership and other technical stakeholders to facilitate secure design principles into all forms of technical work. The analyst must be technically proficient with many forms of security tools and capabilities, including (but not limited to), architecture frameworks, network security, data security, cloud security, Zero Trust, identity services, threat detection, encryption, and others.

This role must collaborate with technical and non-technical teams to design, build, implement and transition standard technologies into production use. The architect will be a champion of cybersecurity and help facilitate his' importance across the firm and also facilite the use of standards/approaches. The role is expected to be knowledgeable of security architecture and secure design principles with a special preference in Cloud based infrastructure and Zero Trust design. This role will also work closely with all areas of cybersecurity to continuously improve on our capabilities.

Requirement:

8-10 years of Security Experience

5 years of Architect exp

Experience with ZeroTrust, Zscaller, Data Protection.

Must be super collaborative to work with enterprise architects and be able to push ideas. So comm skills and personality a must!!

Essential Functions

% of time

Subject Matter Expertise

• Remain current with new security threats and assess systems to ensure they can defend the firm.
• Constantly research capabilities of current and new disruptive solutions on the market and make recommendations to security leadership.
• Formally develop security team standards, policy alignment, procedures and processes aligned to a reference framework
• Formally develop security standards, policy alignment, procedures and processes in alignment with objectives
• Influence the planning and execution of incident response and postmortem exercises
• Possess a DevOps focus across technology and security architecture, automation, integration and distribution.
• Support and help drive security efficiencies across Bain
• Perform other duties as assigned
  

75%

Communication, Teaming, and Leadership

• Develop relationships with other engineering, IT, incident response, SOC and software engineering team members to improve adoption of security architecture
• Mentor other engineers and security experts

25%

Qualifications

Education

Degree level and area of specialization needed for the performance of this role's Essential Functions

Required

• Bachelor's in a technical field or equivalent experience

Preferred

• Certifications in an accredited cybersecurity or risk based framework

Experience

Typical number of years/type of experience

Include the required number of years of overall experience as well as years of experience in a particular function (if applicable).

Required

• 7-10 years in a technology role
• 4+ years' experience in cyber security

Preferred

• Experiences working in system or enterprise architectures; including cybersecurity

Knowledge, Skills, and Abilities

Include specialized background and key competencies needed to perform the role.

Required

• Deep Cybersecurity or Information Security background
• Good knowledge of technology concepts and general topics
• Communication: Outstanding written and verbal communication skills including the ability to communicate effectively with people regardless of their technical skill set or seniority
• Strategic: The ability to think long term and big picture, and to connect tactical solutions to a long-term plan.
• Business-minded: The ability to understand business challenges and opportunities, and to always seek to understand the business objective before looking for an IT solution.
• Influencing: The ability to accomplish goals through influence across the enterprise, rather than direct line management control.
• Credible: The ability to work credibly with senior and executive leaders.
• Analytical: The ability to visualize problems, ask the right questions and find the right inputs.
• Facilitation: The ability to bring together individuals with different perspectives and opinions, and drive toward a common goal.
• Proactive: Ability independently seek out solutions to issues without waiting to be told or direction needed.
• Creative: The ability to think of new ways to bring more insight and additional value to the business.

Preferred

• Experience in Zero Trust Design and Architectures and Secure Service Edge principles