|Security Operations (SOC) Security Architect|
|Citi||Irving, Texas, United States||24/05/2022|
|Sr Advanced Cyber Security Architect|
|Product Security Architect|
|Resideo||BANGALORE METROPOLITAN AREA, India||27/06/2022|
|Principal, Cyber Security Architect|
|BNY Mellon||Pittsburgh, Pennsylvania, United States||26/06/2022|
|Principal Cloud Security Architect|
|Federal Reserve Bank of Chicago||New York, New York, United States||15/06/2022|
|Federal - Cyber Security Solution Architect|
|Accenture||Arlington, Virginia, United States||14/06/2022|
|Principal, Cyber Security Architect|
|BNY Mellon||New York, New York, United States||26/06/2022|
|Lead Systems Architect - Mobile Security|
|Wells Fargo||Chandler, Arizona, United States||26/06/2022|
|Lead Systems Architect - Mobile Security|
|Wells Fargo||Minneapolis, Minnesota, United States||26/06/2022|
|Information Systems Security Manager (ISSM)/Project Lead (Cyber Assurance Architect)|
|Sandia National Laboratories||Albuquerque, New Mexico, United States||24/06/2022|
An IT Security Architect will likely be involved in the design, build, implementation and management of an organisations IT Security infrastructure as part of their job role.
Their job will also potentially necessitate their involvement in the implementation of an IT Security strategy, liaison with staff, software and hardware vendors plus any other partners that are supplying any computer security related services.
Typical job duties for the role of Security Architect include gaining a deep understanding of the organisations IT systems, together with planning the design for a more robust security architecture. Duties will also likely include risk analysis feeding into overall security assessments incorporating the outputs from any necessary vulnerability testing.
The Security Architect will need to plan and develop the requirements for all network-connected devices such as routers and firewalls and of course any connected computers. Networks covered will include Virtual Private Networks (VPN), Local Area Networks (LAN) and Wide Area Networks (WAN). Project and man management skills may also be required for this senior-level important role depending on requirements. Implementation and on-going maintenance of IT Security may also be a requirement of the job role.
More specific Security Architect responsibilities may include:
1) IT Security Planning – Developing a full knowledge and understanding of the organisations IT, technology and Information Systems.
Liaison with existing skilled staff, together with the practical utilisation of up to date understanding of security standards, authentication protocols and state of the art security systems. The knowledge gained will then correctly inform future decision-making and selection of the optimum security solutions. Presentation to senior IT management. This may require the creation of a formal project plan that can be checked and signed off at each stage of the project lifecycle.
2) IT Security Design – Once the overall IT security Plan has been agreed, detailed design can begin.
Detailed design of the IT Security solution will be informed primarily by knowledge gained during the planning stage and vulnerability testing, which will expose existing security weaknesses. With these inputs, and research into current IT Security best practice including the latest hardware and software solutions available, detailed design of the solution will be possible. This design will likely include a Public Key Infrastructure (PKI) using Certification Authorities (CA), including the use of Digital Signatures where appropriate. A network design for the WAN (Wide Area Network), LAN (Local Area Network) and VPN (Virtual Private Network) will likely feed into the overall project plan at this stage. All known exploits and weaknesses should be negated within the design and advanced data encryption technology incorporated where possible.
Costing’s may need to be calculated and budgets then managed efficiently prior to procurement of hardware, software, manpower and other required services.
3) IT Security Implementation – Installing the solution including firewalls, routers, VPN (Virtual Private Network), Servers and Networks.
Once the planning and design phase have been successfully completed, procurement, integration with existing systems and implementation will need to be managed. As Security Architect, you will be responsible for ensuring and testing that the implementation is successful and has met the organisations objectives in a cost-effective and timely manner.
The implementation phase will need to be fully tested once complete to assure adherence to the requirements and of course that the IT security solutions behave as expected.
4) On-going IT Security Management and Maintenance – Skilled staff and procedures will need to be adopted to ensure robust IT Security
Once implementation has been achieved, on-going maintenance and management may be required, depending on the size of the organisation and its requirements. As Security Architect you will likely need to provide technical documentation and initial support to the organisations IT Security team. This may include developing a corporate security policy, overseeing a security awareness program and possibly education of staff regarding the new procedures. If your role is as a full time member of staff, and you are not simply a short time Consultant IT Security Architect, then your role may include responding to new IT security threats and providing analysis and solutions to any identified problems.
This is usually a daytime role, working an average 40 hour week. Short-term IT Security Architect Contractors and Consultants may be paid a day rate where additional work is chargeable.
Security Architect jobs are considered to be senior roles, so when starting a cybersecurity career, many people will start off in a more entry-level position such as a system administrator and then begin moving into more security-focused positions. After several years working through security positions and with education and certification, individuals can become Security Architects.
When you become a Security Architect, there are a few roles that you can take, including:
Cybersecurity is one of the largest growing industries and is expected to grow 33% from 2020 to 2030. Governments and nearly all businesses have some form of cybersecurity, whether in-house or contracted. Security Architects could work for educational facilities, hospitals, financial institutions, governments, and more.
As stated earlier, a Security Architect is a senior role, so you will need to start at an entry-level position and slowly make your way up after gaining the necessary skills and certifications.
The position of a Security Architect can be done remotely; however, there may be times when you have to return to the brick and mortar office in the event of a security threat. But for the most part, the work that a Security Architect will do involves the digital world, so there are capabilities to work these positions remotely from anywhere.
Though the requirements can vary from employer to employer, you can expect to see the same hard skills when applying for a Security Architect job:
Depending on the organization and the position, you may not need all of the above certifications. The certifications will vary depending on the needs of the organization. However, having several cybersecurity certifications will set you apart from other applicants seeking that position. Outside of specific degrees and software, it is also vital to grow your soft skills, which include abilities such as the following:
To gain more knowledge and education on the current cybersecurity trends, you can attend technical training programs at several organizations. One example is BlackHat, which gives attendees a hands-on approach with courses on penetration testing, infrastructure hacking, and more.
There is quite a bit of income growth potential for Security Architects. On average, a Security Architect’s IT salary is $153,751 annually in the United States. When entering the field, Security Architects make around $86,000. As they gain experience, they may multiply their income into a salary that can range up to $274,000 annually.
Though the salary range is higher for a Security Architect than other similar positions, the job is highly sought out and offers limitless potential for mobility. You will use years of experience, degrees, and certifications in conjunction with constant training to ensure that your knowledge is still accurate for the constantly changing world of cybersecurity.
See our security architect salary guide for more detailed information.