Information Security Architect

About the job :-

LTIMindtree is a global technology consulting and digital solutions company that enables enterprises across industries to reimagine business models, accelerate innovation, and maximize growth by harnessing digital technologies. As a digital transformation partner to more than 750 clients, LTIMindtree brings extensive domain and technology expertise to help drive superior competitive differentiation, customer experiences, and business outcomes in a converging world. For more information, please visit www.ltimindtree.com

Information Security Architect

Location: Sydney, Australia

Employment Type: FTC-12 months

Job Description :

The Information Security Architect will play a pivotal role in embedding security into all stages of solution design and vendor onboarding across the organization. This individual will collaborate closely with the Enterprise Architecture Team, review High-Level Solution Designs (HLSD), perform vendor security assessments. They will support various business units across different time zones, ensuring solutions are Secure by Design and aligned with security policies and principles established by the Cyber Security Team. The role will also involve performing vendor security assessments, third-party risk assessments, and providing ongoing security advice to business units in various time zones.

This role is critical in ensuring that the organization’s security posture is maintained, risks are identified, and alternative security controls are recommended when necessary. The Information Security Architect will endorse security documentation and solutions

Key Responsibilities

1. Solution Design and Architecture Review

• Security Endorsement: Collaborate with the Enterprise Architecture Team to review and endorse High-Level Solution Designs (HLSD) for various projects, ensuring alignment with the organization's security policies and architectural standards.
• Secure by Design Principles: Ensure that security is embedded in the design phase of all new projects by advocating for Secure by Design principles and aligning solutions with the organization’s security architecture.
• Risk Identification: Assess and identify security risks in proposed solutions, making recommendations to mitigate risks while enabling business objectives.
• Architecture Documentation: Provide detailed security architecture documentation and review solution blueprints for adherence to security standards.

2. Vendor Security Assessments and Third-Party Onboarding

• Vendor Security Evaluation: Conduct comprehensive vendor security assessments for third-party solutions, ensuring that external partners comply with internal security policies and industry standards (e.g., ISO 27001, NIST, GDPR).
• Onboarding Security Review: Review and assess security capabilities of third-party vendors during the onboarding process, evaluating their ability to protect sensitive data and mitigate potential threats.
• Contractual Security Requirements: Work with legal and procurement teams to ensure security-related contractual requirements are clearly defined and enforced with third-party vendors.
• Ongoing Security Monitoring: Recommend ongoing security assessment mechanisms for third-party relationships, such as periodic audits and security performance reviews.

3. Business Unit Support & Cross-Time Zone Collaboration

• Security Advisory: Serve as a security advisor to business units across different time zones, providing guidance on security best practices, secure architecture, and compliance.
• Cross-Functional Collaboration: Work with various departments (e.g., IT, Legal, Procurement) to ensure alignment on security policies and provide security recommendations tailored to specific business needs.
• Security Training: Provide security education to business units, helping them understand and apply security principles in their projects and processes.

4. Policy and Standard Implementation

• Security Policy Alignment: Ensure that all solution designs and vendor engagements adhere to the security policies and frameworks established by the Cyber Security Team.
• Security Recommendations: Propose and recommend security improvements based on best practices, new threats, and evolving technologies.
• Compliance Assurance: Ensure compliance with security frameworks, regulations, and standards, including but not limited to ISO 27001, GDPR, and PCI-DSS.

5. Documentation and Reporting

• Endorsement of Security Solutions: Provide documented endorsement of security solutions, risk assessments, and architecture designs, ensuring all recommendations are in line with the organization's strategic security objectives.
• Security Reporting: Regularly report on the security posture of various projects, vendors, and third-party integrations, highlighting areas of improvement or emerging risks to the Global Cyber Security Manager.
• Continuous Improvement: Contribute to the evolution of security policies, procedures, and standards based on lessons learned and industry developments.

Skills and Competencies

1. Technical Expertise

• Information Security Knowledge: Deep understanding of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS, OWASP).
• Security Architecture: Strong understanding of security architecture principles, including Secure by Design methodologies and threat modeling.
• Architecture Design: Strong ability to assess and contribute to solution architecture, with a focus on embedding security controls and practices.
• Cloud and Data Center Security: Expertise in securing cloud environments (AWS, Azure, GCP) and traditional data centers, including network segmentation, encryption, and identity management.
• Third-Party Risk Management: Experience in performing vendor security assessments and managing third-party risks, particularly in complex environments involving multiple vendors.
• Technical Security Tools: Proficiency with security tools such as firewalls, SIEMs, vulnerability scanners, endpoint protection, and identity management solutions.
• Network Security: Knowledge of network security protocols, firewall configurations, VPNs, and intrusion detection systems.
• Application Security: Understanding of secure application development practices, including code reviews, secure coding, and vulnerability assessments.

2. Risk Management

• Risk Assessment: Expertise in performing risk assessments, particularly in complex environments involving multiple vendors and third-party systems.
• Control Recommendations: Ability to recommend and implement security controls based on risk assessments, balancing technical needs with business objectives.
• Risk Communication: Strong communication skills to explain security risks and proposed controls to non-technical stakeholders.

3. Vendor and Third-Party Security

• Vendor Risk Management: Experience in conducting vendor security assessments and managing third-party risks, including the ability to evaluate contractual security obligations.
• Third-Party Onboarding: Expertise in onboarding third-party providers, ensuring alignment with the organization’s security framework.

4. Collaboration & Stakeholder Management

• Cross-functional Collaboration: Strong ability to work with cross-functional teams, including IT, Legal, Procurement, and business units, to ensure alignment on security priorities.
• Stakeholder Engagement: Ability to engage with and influence stakeholders at all levels, from business unit leads to technical teams

5. Communication Skills

• Documentation Endorsement: Ability to review and endorse security-related documentation, ensuring it meets the organization’s security policies.
• Risk Articulation: Excellent written and verbal communication skills to articulate complex security risks, recommendations, and solutions to both technical and non-technical stakeholders.

6. Compliance and Regulatory Knowledge

• Security Standards: Knowledge of relevant security standards and frameworks, such as ISO 27001, NIST, GDPR, and PCI-DSS.
• Compliance Alignment: Ability to ensure that solutions and third-party engagements comply with industry regulations and internal security policies.

Required Qualifications

• Education: Bachelor’s degree in Information Security, Computer Science, or a related field.
• Certifications: Relevant certifications such as CISSP, TOGAF, or SABSA.
• Experience: 5+ years of experience in Information Security Architecture or a similar role within a global or multi-regional organization. Experience in risk management, and vendor security assessments.
• Cloud Expertise: Experience with cloud platforms (AWS, Azure, GCP) and cloud security solutions.

Reporting Line:

• The Information Security Architect reports to the Global Cyber Security Manager and will endorse solutions, provide recommendations, and communicate risks with business units and the enterprise architecture team. The Global Cyber Security Manager will review the architect’s endorsements and provide the final approval.

LTIMindtree Minds Enjoy -

• Family Friendly and Flexible working arrangements - work here there or anywhere >
• Working on innovative project transformation works >
• Personal development to enhance your career >
• Rewarding curiosity and collaboration >

LTI Mindtree minds are distinguished by their superior talent and mental agility marked by extreme ownership of transformative technologies in the digital age.