RSA Archer GRC Information Security Architect

Location: San Antonio, TX, United States
Date Posted: 06-08-2018
We're looking for an Information Security Architect who will lead Design, Configure and Maintain the Archer GRC system.  Will also need to lead Information Security risk by identifying, evaluating, assessing, designing, monitoring, administering, reporting and implementing systems, policies and processes. This position will also advise various levels of senior management on Information Security risk management issues and serve as the primary resource for cross-functional team members on escalated issues of a unique nature. This person will need to work under minimal supervision on complex and unique work assignments and recommend appropriate solutions to resolve problems.
  • Leads technical thought leadership to guide the strategic direction to executive management focusing on Information Security risk of development projects, departmental initiatives and other special projects.
  • Identifies and leads requirements and recommends system security configurations; oversees security briefings and responding to inquiries.
  • Provides advanced advice and acts as an Information Security subject matter expert liaison between the company and staff agencies through formal and ad-hoc inquiries.
  • Provides governance and leads identifying, analyzing and initiating changes in the Information Security policies, guidelines and standards including advising company and staff agencies in support of developing and managing the Information Security awareness program.
  • Gives counsel to ensure that internally developed and commercially available business applications include adequate Information Security controls; Consults process owners on the identification, development and testing of Information Security controls for risk mitigation effectiveness.
  • Performs physical site assessments of business partners and provides peer review of work product and deliverables. Counsels and performs release of information analysis to third party business partners and identifies alternative methods for securing and releasing information when applicable.
  • Leads the planning, design, development and execution of the Information Security risk and control identification, evaluation, documentation, analysis and reporting processes including analytic tools. Provides expert analysis and recommendations on Information Security risk assessment and mitigation to internal and external clients or other analysts; influences Information Security risk management strategies and approaches and educates risk owners on best practices. Regularly advises senior management on key Information Security risk management efforts.
  • Establishes strategic partnerships to anticipate, advise, and effectively communicate (written and verbal) Federal and State regulatory and business partner Information Security risk requirements.
  • Coaches and mentors peers and cross functional team members to achieve business result, development, and delivery.
  • Other duties as assigned.
Minimum Requirements
  • Bachelor's degree in MIS, Computer Engineering, Cyber Security, IT or related disciplines or 4 years of additional work experience in IT, Information Security, Cyber Security or equivalent experience in lieu of a degree.
  • 8+ years work experience in Information Technology or related discipline.
  • 6+ years leading within a matrixed corporate environment.
  • Expert level knowledge specific to RSA Archer v6.0 or later in the following: application architecture, design, and maintenance; developing/configuring  security apps; upgrades/ implementations; multi-server environments; data feeds; advance work flow; application testing and  troubleshooting; system capacity and performance; API’s and SQL; modeling data, process, events, objects; change control procedures; release management; working as an integral application development team member.
  • Advanced knowledge in risk, control, budgets, process and loss costing.
  • Advanced knowledge of relevant industry data sources, standards, data analysis tools and techniques (e.g. Archer, MetricStream, BWise).
  • 8+ years facilitating risk assessment sessions with all levels of management and executive management.
Preferred Experience:
  • Experience working for large financial intuition(s) with experience working with regulations/regulators in a cybersecurity role/function
  • Experience and skills with security data & analytics, data science a plus; incorporate appropriate data mining and analysis techniques to identify security risk and solve specific problems. to communicate trends, metrics and actionable recommendations in verbal briefs, dashboards and reports to a wide ranging technical/business audience.
For more information, please apply below or contact us
this job portal is powered by CATS