Our partner is global leader in commercial real estate services, helping clients transform the way people work, shop, and live.
The Jr. Security Architect is responsible for partnering with Sr. Security resources implementing, and assessing systems, applications, and services as part of a risk-based and cost-effective security program. This role serves as a primary contributor to the strategy, secure design, and implementation of systems, applications, and services.
Essential Duties and Responsibilities:
- Develop and provide security guidance for new and existing systems, applications, and services; this includes weighing business needs, internal governance standards, and third-party compliance requirements.
- Partner with the Technology Share Services (TSS) team and third-party service providers to establish and track regional and global priorities for security initiatives.
- Partner with Risk Management and Client Data team to provide technical guidance and mitigating controls for identified risks within the environment
- Provide regular reporting on security initiatives to the Senior Management Group.
- Ability to own niches within our Security Stack and serve as the subject matter expert on security issues and provides expert level consultation to stakeholders across the organization. Reviews architectural designs and make recommendations for approval.
- Provide guidance regarding security for assets and data, both on-premises and cloud-based. Evaluate emerging technologies and product categories to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
- Implement and maintain security systems, applications, and services that provide detection, preventions, containment and deterrence mechanisms to protect corporate data.
- Provide guidance on the selection, testing, and deployment of new security solutions.
- Document security requirements by evaluating business needs, internal governance standards, and third-party & customer compliance requirements.
- Align cloud-based systems, applications, and services to corporate security standards and requirements. Develop cloud-specific standards and requirements as appropriate.
- Determine security requirements by evaluating business strategies and requirements, research information security standards, conduct system security and vulnerability analyses, and identify integration issues.
- Using the security tools available, monitor and follow up on any suspected or realized threats, keeping a clear and updated record of steps taken to remediate or reduce the threat.
Other Duties and Responsibilities:
- Advise maintaining control standards, and system and application standards. Provide input to Corporate and Security policies.
- Provide governance over security, risk, and vulnerability assessments of on-premises and cloud-based systems, applications, and services.
- Conducting IT and Security audits, writing reports, reviewing findings, making recommendations to management, and tracking remediation progress in collaborating with IT, Internal Audit, Compliance, business owners, and business unit leads.
- Analyzing and evaluating security operations to identify risks or opportunities for improvement.
- Represents the security program at senior management meetings.
- Will perform other duties as assigned.