DigitalGlobe Security Architect in Westminster, Colorado

Please review the job details below.

The Security Architect reports into Portfolio and Program Management and provides security engineering, technical leadership and execution ownership throughout a program or initiative. This role is responsible for deriving, designing and engineering security solutions that have a direct impact on efficiency, cost, revenue and innovation for the company. A successful candidate in this role is a solutions-focused leader who is able to ensure a product or capability is enabled on schedule in a way that is compatible with or complimentary to existing systems. As our systems span multiple areas of expertise, this is role requires extensive technical leadership, collaboration, and clear communication, both written and verbal. The scope of deliverables includes: security requirements derivation, security solution design, initiative planning/readiness, and oversight of successful implementation or product roll out.

The Security Architect gathers and manages customer requirements as part of collaboration with market facing team members; leads and collaborates closely with Enterprise Architectures, Domain Architects and Systems Engineers to ensure alignment of customer requirements with development and implementation plans; collaborates closely with functional leads (Domain architects, product owners, subject matter experts) to define work plans and dependencies, responsible for outcome verification, and optimized transition to Operations; keeps end-user/operator apprised of solution and progress. This role is heavily software based - and business-value focused.

Responsibilities

  • Manage the development, documentation, implementation, and communication of customer-facing and enterprise-wide information security strategies, practices and policies.

  • Lead and/or manage multi-disciplinary team reviews of existing architecture, identify security architecture and design gaps, and recommend and drive required security enhancements.

  • Lead and/or manage multi-disciplinary team reviews of new products, business applications, and/or vendors to identify security design gaps to evaluate appropriate security capabilities, assessing their risk and their value in support of a customer-facing program, corporate goals and overall security strategy.

  • Conduct individual, independent security reviews of vendor proposals, review security architectures and recommend modifications to the information security operation to evaluate risk reduce costs or improve service.

  • Serve as information security subject matter expert, trusted advisor/inside information security consultant; provide advisory and consulting services as needed to various department and project teams.

  • Meet with project teams and other system architects to develop system designs and project plans that include the appropriate security controls and meet security standards.

  • Understand current as well as emerging security threats and design security architecture to mitigate threats where possible.

  • Stay abreast of new information systems and security technologies and integrate into security architecture design when appropriate.

  • Manage multi-disciplinary incident response team in response to current or potential threats, incidents.

  • Lead and/or participate in security risk assessments using a NIST and RMF based risk methodology; Maintain a thorough understanding of NIST 800-53 controls, and determine which controls are applicable to the system applications, as well as document implementation in Security Controls Tractability Matrix (SCTM).

  • Prepare specific security status reports by developing, collecting, analyzing, and summarizing security related data and trends.

  • Present specific security status reports to various levels of management, including Senior Management Team.

  • Identify and develop regular and emergency security-related communications as needed.

  • Actively promote security and risk related campaigns for information security awareness among all staff.

Basic Qualifications

  • Minimum of five to seven years of Information Security experience is required.

  • Minimum of Bachelor’s Degree in Information Technology, Computer Science, Information Assurance or related technical field is required.

  • TS/SCI Security Clearance required.

  • Experience with ICD 503.

  • Experience in a Security Analyst, Security Engineer or Security Architect role is required.

  • Experience in business/industry (beyond IT).

  • Experience managing cross-functional teams or projects, and influencing senior-level management and key stakeholders desired.

  • Previous experience working as a security professional in a Secret or TS/SCI environment.

  • Must have a strong understanding of network architecture, firewalls, Intrusion Detection Systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems.

  • Must have a strong knowledge cyber security theory and practice as promoted by numerous security standards and certification entities.

  • Must have a strong understanding of advanced technical security topics such as Security Essentials; Auditing and monitoring networks, systems, and users; forensics, malware analysis; and security incident response.

Preferred Qualifications

  • Certifications: CISSP, CEH

  • Experience in a converged cyber and Physical Security department desired.

  • Experience managing cross-functional teams or projects, and influencing senior-level management and key stakeholders desired.

  • Background in GIS, manufacturing, spacecraft command and control, ground systems infrastructure, or analytics are a plus.

  • Familiarity with software development practices and various methodologies (Scaled Agile Framework preferred: SAFe, and Waterfall experience is beneficial as well).

  • Familiarity conducting vulnerability scans.

DigitalGlobe and Radiant solutions offer a generous compensation package including a competitive salary; choice of medical plan; dental, life, and disability insurance; a 401(K) plan with competitive company match; paid holidays and paid time off.

DigitalGlobe is a leading provider of commercial high-resolution earth observation and advanced geospatial solutions that help decision makers better understand our changing planet in order to save lives, resources and time. Sourced from the world’s leading constellation, our imagery solutions deliver unmatched coverage and capacity to meet our customers’ most demanding mission requirements. Each day customers in defense and intelligence, public safety, civil agencies, map making and analysis, environmental monitoring, oil and gas exploration, infrastructure management, navigation technology, and providers of location-based services depend on DigitalGlobe data, information, technology and expertise to gain actionable insight.

DigitalGlobe is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, gender identity and expression, age, disability, veteran status, or any other protected factor.