Senior Security Architect

**Our government client in NYC Is looking for a Senior Security Architect for a 5 days a week onsite role and 35 hour week. This is for 12+months.

Start date is March 1
Normal Business Days/Hours: Monday – Friday (9:00am - 5:00pm includes one-hour unpaid lunch) - 35 hours work week.
Senior Security Architect
Our client is seeking a
Senior Security Architect**
who will be responsible for a number of functions associated with IT Security and our Cyber Security program, including, but not limited to, the design, architecture, and implementation of comprehensive security solutions, analyzing existing security infrastructure, identifying vulnerabilities and proposing enhancements to mitigate risks and safeguard the agency's systems and data.

The IT Senior Security Architect reports to the agency's Chief Information Security Officer (CISO), within the Division of the Office of the Commissioner. This department is comprised of a Chief Information Security Officer (CISO), Vulnerability Management Engineer, Application Security Manager, Risk Manager, Awareness Analyst, SOC Engineer, and Security Information and Event Management (SIEM) Engineer.

Scope of Work
The Senior Information Security Architect will be a key member of the newly formed Information Security team. This individual will actively contribute to the development of the information security strategy. This candidate will provide expertise and support to the Chief Information Security Officer of the agency as well as contribute to all aspects of the Information Security Program including engineering, operations governance, and incident response.

The Senior Information Security Architect responsibilities will include the following:

• Review and document technical requirement to comply with Citywide Cybersecurity Policies and Standards
• In collaboration with the CISO and IT team develop the agency information security strategy and key initiative
• Identify objectives & key performance indicators for each initiative's success
• Develop budget & resource requirements and execution plans for key cybersecurity initiatives
• Lead key initiatives working with IT teams, third parties, and key stakeholders to deliver the intended
• Design and implement robust security architectures and frameworks for the agency's systems and networks.
• Lead user security awareness program
• Assist in the identity governance program
• Provide guidance to improve SDLC security
• Lead vulnerability patching processes and provide risk assessment and prioritization
• Conduct security assessments and risk analyses to identify potential vulnerabilities and threats.
• Participate in security-related projects and initiatives to support the agency's strategic goals.
• Guide the organization's change management process to ensure changes related to improving data security are accepted and adopted by the organization and key stakeholders.

Vendor Qualifications

• DESIRABLE SKILLS/EXPERIENCE: - Minimum of 4 -6 years of experience in information security architecture or engineering.
• Excellent verbal and written communications skills
• Ability to create executive content and presentations with impactful messaging
• Bachelor's or master's degree in computer science preferably with a focus on Cybersecurity.
• Professional information security certifications such as the CISSP-ISSAP, AWS Solution Architect + Security, or Azure Solutions Architect
• Must have a strong working knowledge of security controls for on-premises and cloud-based computing services including AWS or Azure.
• Strong knowledge of common information security frameworks, including CIS Top 20 Controls, ISO 27001, and NIST Series.
• Organization change-management experience

Information Security Certifications: ISACA, CISSP, CISM or cloud security certification is plus point.