Posted: Saturday, February 3, 2018 5:34 PM
This position is responsible for providing thought leadership and subject matter expertise in information security assessments, designs, and solutions across the organization. The individual will balance business priorities, information security risks, and best practice security architecture to ensure confidentiality, integrity, and availability of business critical IT and data assets. Additionally, the successful candidate will be a key consultant who will facilitate discussions with key stakeholders in large workshops, small groups or one:on:one sessions while driving adoption of information security practices, standards, and processes throughout the enterprise
: Architect and design information security solutions to meet business objectives and align to the adopted enterprise security framework to ensure appropriate and effective security controls are built in from the start.
: Designs and leads the implementation of enterprise security architecture based on enterprise business requirements and IT strategies.
: Analyzes the IT environment to detect critical cyber security deficiencies, and recommend solutions for improvement.
: Analyzes business requirements to determine and recommend solution design based on current architecture strategy.
: Develops a road map of the evolution of information security capabilities from current to future state.
: Research, design and advocate new technologies, architectures, and security products as well as governance activities that will support business security requirements for the enterprise and its third:party service providers while ensuring compliance with defined security architecture
: Provide security design, consultancy, and assessment services in accordance with industry and market trends while introducing improvements in technical security standards and security implementation designs/patterns that could potentially impact on the enterprise.
: Collaborate with enterprise architects, IT leads and business process partners to ensure adequate security solutions are in place for all IT systems and platforms to sufficiently mitigate identified risks and meet business objectives.
: Drive the development and design of best practices, standards, and processes to ensure optimal protection of cloud:based and on:premise company assets
: Evaluate existing security capabilities to understand needs with a view to translating those needs into additional capabilities verified to meet business requirements
: Collaborates with other solution architects and project leaders to identify drivers and triggers that require a modification of the solution architecture based on project business requirements.
: Identifies the organizational impact (for example, on skills, processes, technology, and information) and financial impact of recommended security architecture.
: Document all security solution architecture design and analysis work.
: Work closely with the program management office to ensure alignment of plans with what is being delivered.
: Develops reference security architecture and ensure project and solutions delivery to that target architecture.
: Bachelors degree in computer science, information systems or similarly related field of study required.
: CISSP Certification required
: TOGAF, SABSA and/or SANS GIAC Certifications preferred.
: 6 or more years of experience in Cyber Security required.
: 6 or more years of experience as an architect or network security specialist preferred.
Andeavor, formerly Tesoro, is a premier refining, marketing and logistics company in the mid:continent and western United States. Our Company operates 10 refineries with a combined capacity of approximately 1.2 million barrels per day, an extensive logistics network, and a retail:marketing system that includes approximatel
• Location: San Antonio
• Post ID: 35390617 sanantonio