Defining complex security architectures that are necessary to integrate new entities when a merger or acquisition is complete, including leading various levels of technology resource through the decision-making process.
Analyzing and understanding the impact of regulation changes on security architecture, standards and policies, including making and communicating updates as needed.
Providing guidance and coaching to cybersecurity lead and senior architects and engineers, and providing overall technical expertise to the cybersecurity department and business stakeholders.
Researching, modeling, and tracking secure system standards, industry trends, market technology, potential threats, tactics, and procedures for ecosystem applicability and reference.
Developing formal management reporting dashboards aligned to widely accepted standards, including appropriate metrics that inform senior leadership as to the state of information security risk and exposure.
Effectively communicating risk and mitigation activities to all levels of the organization during incident or risk treatment actions, to inform critical decision-making and deliver risk reductions.
Identifying, quantifying, and documenting requirements to address security risks as they relate to IT and enterprise projects.
Recognizing and identifying potential areas where existing security policies and procedures require change, or where new ones need to be developed, especially regarding future business expansion.
Performing third-party security risk assessments, especially for cloud service providers and responding to third-party requests for information on CNO’s information security program/policies.
Ensuring that the organization is leveraging the proper technologies to meet SOX, PCI, and HIPAA/HITECH compliance requirements.
Serving as a subject matter expert for the incident lead during Incident Response activities.
Leading matrix working groups during Incident Response activities.
Supporting legal and Internal Audit activities and information gathering when needed, and effectively communicating complex security topics to these teams.

Requirements

Bachelor’s degree in Information Technology or a related field of study, or equivalent experience.
12 years of progressive IT experience with 5+ years’ experience as a security architect or related role.
Experience implementing and ensuring compliance with DoD STIG, Critical Infrastructure Protection, FedRAMP or other security requirement frameworks or guides.
A strong ability to apply business and technical knowledge to solving technology and security challenges.

Benefits

Medical insurance
Dental insurance
Vision insurance
401(k) retirement plan with company match
Short-term & long-term disability insurance
Paid time-off and corporate holidays
Paid parental leave
Company paid life insurance

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security architecturerisk assessmentincident responsecompliance frameworksmanagement reportingcloud securitysecurity policiestechnical expertisemetrics developmentthird-party risk management

Soft Skills

communicationleadershipcoachingdecision-makingguidanceanalytical thinkingproblem-solvingcollaborationorganizational skillsadaptability