Email me newest jobs similar to this one
about 1 month ago
only 26 days until close

Principal Security Architect (Applications)


Delta Air Lines
Location: United States, North America
Job type: Permanent
Sector: Business & Administration
Category: Security & Fire Service
Apply
Select how you want to share:
View similar
The Information Security Solutions Architect (ISA) is responsible for the design, development, and maintenance of information security architecture and technology solutions that address Delta's current and emerging business and technology requirements. The ISA leads key stakeholders across Delta's organization to understand functional security requirements of business initiatives and translates those requirements into security controls which can be leveraged by various business and technology teams. The ISA is the technical leader on information security architecture, providing guidance in defining the current state and future direction of Delta's security architecture landscape. This position reports to the Chief Information Security Officer and will work in close collaboration with the CISO's direct reports, and with the Enterprise Security Architect.

YOUR RESPONSIBILITIES IN THIS ROLE

The key responsibilities of the role are as follows:
Serve as the information security architecture subject-matter leader, providing advisory and consulting services to major projects and programs specific to the required security stack at the network layer; provide technical direction and leadership to resolve critical design or operational issues that affect development and deployment of new products and services in the enterprise
Work closely with key security, technology, and business groups in the development of leading enterprise security architecture and solutions that ensure the protection of Delta's assets and data; engage IT and security leadership, both technical and managerial, for the review and acceptance of security architecture and standards; ensure decisions are made and implemented accordingly
Oversee and align security control sets and control objectives based on Delta's business and technology requirements and initiatives; develop, maintain, and execute key architecture processes for the enforcement of security policies, standards, and procedures across Delta's enterprise IT landscape
Review current state security architecture, identify design gaps, and recommend security enhancements; work with enterprise security architecture to establish a strategic security architecture vision, mission and goals including standards and frameworks that align with Delta's overall business strategy in a flexible and agile manner
Develop, maintain, and evolve enterprise security reference architecture, standard templates, design patterns that assist solution architects to develop solutions to business units' requirements that use/re-use common technology platforms
Lead solution architecture design discussions, lead security efforts assisting with the integration and initial implementation of solutions, and solicit and evaluate technical contributions & proposals from vendor companies as necessary to meet future security requirements
Achieve security architecture compliance on business and regulatory requirements, including Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI-DSS), General Data Protection Regulation (GDPR), and other Federal and State regulations
Research, analyze, determine, and propose technology solution alternatives that address specific business needs and product/service strategies across lines of business; identify the organizational and fiscal impact of the security enforcement solutions
Understand current and emerging security threats and design security architecture to mitigate threats where possible
Stay abreast on new security technologies, standards, and enterprise frameworks and integrate them into Delta's existing enterprise security architecture design where possible
Monitor, measure, and refine the execution of the security architecture plans against the security strategy and metrics: Key Risk Indicators (KRIs) & Key Performance Indicators (KPIs)

Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. The professional experience and educational background of candidates in this role are as follows:

Minimum of 10+ years of hands-on experience in information security, especially in an enterprise security architect role
Network Security Experience- for network security req
Experience in Security Applications space-for applications position
Strong knowledge on security and architecture principles, frameworks, and leading practices
Strong knowledge on identifying and aligning business initiatives to specific security principles
Broad knowledge of security technologies, solutions, and tools in data security, endpoint security, cloud security, application security, identity & access management, and other security domains; must have expert level competency in two or more of the domains
Experience in leading, designing, and implementing enterprise security solutions
Proven track record of accomplishments in major enterprise level projects
Proven success with managing project delivery within the approved capital and operating expense budgets
Effective communication, documentation, and presentation skills
Experience establishing and operating an Enterprise Security Architecture Review Board
Experience presenting to industry peers
BS or MS in Computer Science, MIS, or a related field preferred
SABSA, TOGAF, CISSP, and/or SANS GIAC certifications
Previous professional consulting experience strongly desired (e.g., Big 4, Accenture, IBM, etc.)
Willingness to travel as needed

WHAT ELSE?
Project Management or PMP experience highly preferred-for 3rd req.
The Information Security Solutions Architect (ISA) is responsible for the design, development, and maintenance of information security architecture and technology solutions that address Delta's current and emerging business and technology requirements. The ISA leads key stakeholders across Delta's organization to understand functional security requirements of business initiatives and translates those requirements into security controls which can be leveraged by various business and technology teams. The ISA is the technical leader on information security architecture, providing guidance in defining the current state and future direction of Delta's security architecture landscape. This position reports to the Chief Information Security Officer and will work in close collaboration with the CISO's direct reports, and with the Enterprise Security Architect.

YOUR RESPONSIBILITIES IN THIS ROLE

The key responsibilities of the role are as follows:
Serve as the information security architecture subject-matter leader, providing advisory and consulting services to major projects and programs specific to the required security stack at the network layer; provide technical direction and leadership to resolve critical design or operational issues that affect development and deployment of new products and services in the enterprise
Work closely with key security, technology, and business groups in the development of leading enterprise security architecture and solutions that ensure the protection of Delta's assets and data; engage IT and security leadership, both technical and managerial, for the review and acceptance of security architecture and standards; ensure decisions are made and implemented accordingly
Oversee and align security control sets and control objectives based on Delta's business and technology requirements and initiatives; develop, maintain, and execute key architecture processes for the enforcement of security policies, standards, and procedures across Delta's enterprise IT landscape
Review current state security architecture, identify design gaps, and recommend security enhancements; work with enterprise security architecture to establish a strategic security architecture vision, mission and goals including standards and frameworks that align with Delta's overall business strategy in a flexible and agile manner
Develop, maintain, and evolve enterprise security reference architecture, standard templates, design patterns that assist solution architects to develop solutions to business units' requirements that use/re-use common technology platforms
Lead solution architecture design discussions, lead security efforts assisting with the integration and initial implementation of solutions, and solicit and evaluate technical contributions & proposals from vendor companies as necessary to meet future security requirements
Achieve security architecture compliance on business and regulatory requirements, including Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI-DSS), General Data Protection Regulation (GDPR), and other Federal and State regulations
Research, analyze, determine, and propose technology solution alternatives that address specific business needs and product/service strategies across lines of business; identify the organizational and fiscal impact of the security enforcement solutions
Understand current and emerging security threats and design security architecture to mitigate threats where possible
Stay abreast on new security technologies, standards, and enterprise frameworks and integrate them into Delta's existing enterprise security architecture design where possible
Monitor, measure, and refine the execution of the security architecture plans against the security strategy and metrics: Key Risk Indicators (KRIs) & Key Performance Indicators (KPIs)

Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. The professional experience and educational background of candidates in this role are as follows:

Minimum of 10+ years of hands-on experience in information security, especially in an enterprise security architect role
Network Security Experience- for network security req
Experience in Security Applications space-for applications position
Strong knowledge on security and architecture principles, frameworks, and leading practices
Strong knowledge on identifying and aligning business initiatives to specific security principles
Broad knowledge of security technologies, solutions, and tools in data security, endpoint security, cloud security, application security, identity & access management, and other security domains; must have expert level competency in two or more of the domains
Experience in leading, designing, and implementing enterprise security solutions
Proven track record of accomplishments in major enterprise level projects
Proven success with managing project delivery within the approved capital and operating expense budgets
Effective communication, documentation, and presentation skills
Experience establishing and operating an Enterprise Security Architecture Review Board
Experience presenting to industry peers
BS or MS in Computer Science, MIS, or a related field preferred
SABSA, TOGAF, CISSP, and/or SANS GIAC certifications
Previous professional consulting experience strongly desired (e.g., Big 4, Accenture, IBM, etc.)
Willingness to travel as needed

WHAT ELSE?
Project Management or PMP experience highly preferred-for 3rd req.
Apply

Email me newest jobs similar to this one

  Back to the top