Lockton
Get AI-powered advice on this job and more exclusive features.
Your Responsibilities
The Enterprise Information Security Architect plays an integral role in defining and assessing Locktons global security strategy, architecture, and practices. They will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services. They will be responsible to align global information security strategy with business goals and work towards finding the optimum balance between information security risks and controls while enabling the business. Working closely with cross-functional teams, they will provide expert guidance on security best practices, risk management, and compliance requirements. The scope of this role is global, and they will report directly to the Global Chief Information Security Officer.
Responsibilities:
Security Architecture Design:
Develop and maintain comprehensive security architecture blueprints that align with business objectives, technology strategy, and industry standards. Design solutions to protect against a wide range of security threats and vulnerabilities.
Develop a system-wide, layered defense-in-depth information security strategy plans and roadmaps based on sound enterprise architecture practices.
Develop and maintain cloud security strategy and architecture which aligns with business goals.
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
Risk Assessment and Management:
Conduct risk assessments to identify potential security risks and develop mitigation strategies. Collaborate with stakeholders to prioritize risks and implement appropriate controls.
Determine baseline information security configuration standards for operating systems (e.g., OS hardening), network segmentation, identity and access management (IAM), and other areas, as needed.
Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.
Security Tool Evaluation and Integration:
Evaluate security technologies and tools to enhance Locktons security posture. Integrate new security solutions into existing infrastructure and workflows ensuring the enterprise data, processes and brand are secure while enabling the Business.
Identify alternative solutions and mitigating controls when necessary.
Security Policy Development: Define and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices. Incident Response and Forensics: Contribute towards development of incident response plans and procedures. Participate in investigations into security incidents, analyze root causes, and implement corrective actions to prevent future occurrences. Collaboration and Communication:
Work closely with cross-functional teams, including IT, engineering, operations, and compliance, to align security initiatives with business objectives. Communicate security risks and recommendations to executive leadership in a clear and concise manner.
Lead relevant projects and initiatives as needed and serve as an information security subject matter expert (SME) for complex and high visibility technology initiatives.
Collaborate with regional IT leaders across the global areas of operations.
Qualifications
Minimum 7 years of information security experience Bachelor's or Master's degree in Computer Science, Information Security, or related field. Proven experience in enterprise security architecture (minimum 4 years), with a focus on designing and implementing security solutions in large-scale environments. Strong knowledge of security principles, protocols, and technologies, including encryption, authentication, access control, and network security. Hands-on experience with security tools such as SIEM, IDS/IPS, DLP, endpoint protection, and vulnerability management systems. Familiarity with industry standards and regulations, such as ISO 27001, NIST, GDPR, HIPAA, and PCI DSS. Excellent analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies. Strong communication and interpersonal skills, with the ability to collaborate effectively with diverse stakeholders at all levels of the organization. Relevant certifications (e.g., CISSP, CISM, CEH, CCSP) are a plus.
Personal Attributes:
Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms Foundational technical expertise, including both business acumen and strategic thinking, as well as the ability to identify issues and provide innovative problem solving Passionate about driving and sustaining change through committed leadership Creative and results-oriented, who is good at balancing multiple priorities and issues Team player up and down the organizational structure, across countries and IT/ Security departments Ability to form open, effective, and trusting relationships with global IT leaders Provides a high level of professional service to customers (both internal and external) consistent with Lockton standards and procedures Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Job function
Information Technology Industries
Insurance Referrals increase your chances of interviewing at Lockton by 2x Get notified about new Enterprise Security Architect jobs in
Kansas City, MO . Associate Director, Cloud Security Architect
Cybersecurity - TVM - Vulnerability Management - Senior - Consulting - Location OPEN
Kansas City, MO $103,800 - $190,300 5 days ago Director, Senior Cloud Security Architect
Operational Technology Cybersecurity & Solutions Architect
Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr
The Enterprise Information Security Architect plays an integral role in defining and assessing Locktons global security strategy, architecture, and practices. They will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services. They will be responsible to align global information security strategy with business goals and work towards finding the optimum balance between information security risks and controls while enabling the business. Working closely with cross-functional teams, they will provide expert guidance on security best practices, risk management, and compliance requirements. The scope of this role is global, and they will report directly to the Global Chief Information Security Officer.
Responsibilities:
Security Architecture Design:
Develop and maintain comprehensive security architecture blueprints that align with business objectives, technology strategy, and industry standards. Design solutions to protect against a wide range of security threats and vulnerabilities.
Develop a system-wide, layered defense-in-depth information security strategy plans and roadmaps based on sound enterprise architecture practices.
Develop and maintain cloud security strategy and architecture which aligns with business goals.
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
Risk Assessment and Management:
Conduct risk assessments to identify potential security risks and develop mitigation strategies. Collaborate with stakeholders to prioritize risks and implement appropriate controls.
Determine baseline information security configuration standards for operating systems (e.g., OS hardening), network segmentation, identity and access management (IAM), and other areas, as needed.
Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.
Security Tool Evaluation and Integration:
Evaluate security technologies and tools to enhance Locktons security posture. Integrate new security solutions into existing infrastructure and workflows ensuring the enterprise data, processes and brand are secure while enabling the Business.
Identify alternative solutions and mitigating controls when necessary.
Security Policy Development: Define and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices. Incident Response and Forensics: Contribute towards development of incident response plans and procedures. Participate in investigations into security incidents, analyze root causes, and implement corrective actions to prevent future occurrences. Collaboration and Communication:
Work closely with cross-functional teams, including IT, engineering, operations, and compliance, to align security initiatives with business objectives. Communicate security risks and recommendations to executive leadership in a clear and concise manner.
Lead relevant projects and initiatives as needed and serve as an information security subject matter expert (SME) for complex and high visibility technology initiatives.
Collaborate with regional IT leaders across the global areas of operations.
Qualifications
Minimum 7 years of information security experience Bachelor's or Master's degree in Computer Science, Information Security, or related field. Proven experience in enterprise security architecture (minimum 4 years), with a focus on designing and implementing security solutions in large-scale environments. Strong knowledge of security principles, protocols, and technologies, including encryption, authentication, access control, and network security. Hands-on experience with security tools such as SIEM, IDS/IPS, DLP, endpoint protection, and vulnerability management systems. Familiarity with industry standards and regulations, such as ISO 27001, NIST, GDPR, HIPAA, and PCI DSS. Excellent analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies. Strong communication and interpersonal skills, with the ability to collaborate effectively with diverse stakeholders at all levels of the organization. Relevant certifications (e.g., CISSP, CISM, CEH, CCSP) are a plus.
Personal Attributes:
Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms Foundational technical expertise, including both business acumen and strategic thinking, as well as the ability to identify issues and provide innovative problem solving Passionate about driving and sustaining change through committed leadership Creative and results-oriented, who is good at balancing multiple priorities and issues Team player up and down the organizational structure, across countries and IT/ Security departments Ability to form open, effective, and trusting relationships with global IT leaders Provides a high level of professional service to customers (both internal and external) consistent with Lockton standards and procedures Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Job function
Information Technology Industries
Insurance Referrals increase your chances of interviewing at Lockton by 2x Get notified about new Enterprise Security Architect jobs in
Kansas City, MO . Associate Director, Cloud Security Architect
Cybersecurity - TVM - Vulnerability Management - Senior - Consulting - Location OPEN
Kansas City, MO $103,800 - $190,300 5 days ago Director, Senior Cloud Security Architect
Operational Technology Cybersecurity & Solutions Architect
Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr