AECOM is seeking an Enterprise Security Architect to support our Corporate Information Security team. The Enterprise Security Architect will be responsible for designing enterprise security solutions to ensure the protection of AECOM business globally and establishing a security architecture that allows the business to execute, innovate and meet business transformation objectives. The Security Architect will also provide expert guidance and proactively deliver solutions to meet the complexities of the business while protecting AECOM data and assets.
This position can be primarily remote based from a variety of US locations.
At AECOM, we believe infrastructure creates opportunity for everyone. Whether it’s improving your commute, keeping the lights on, providing access to clean water or transforming skylines, our work helps people and communities thrive.
We take on the most complex challenges and pioneer innovative, iconic solutions that push the limits of what’s possible – the world’s longest cable-stayed bridge, record-breaking sports events, the largest greenfield port development mega project, life-sustainingdisaster recovery programs, and the tallest tower in the Western Hemisphere.
On projects spanning transportation, buildings, water, energy and the environment, we deliver professional services throughout the project lifecycle.
We are proud to be recognized for excellence:
Named one of Fortune magazine's "World's Most Admired Companies" for the sixth consecutive year
Ranked #1 in Engineering News-Record ’s 2020 “Top 200 Environmental Firms”
Ranked #1 in Transportation and General Building in Engineering News-Record ’s 2020 “Top 500 Design Firms”
VIQTORY 2020 Military Friendly® Gold Employer
High Level Responsibilities:
Partner with the Global CISO to develop, document, communicate and enforce security standards.
Engage with IT and business leaders to provide security architecture expertise and guidance specific to a layered security defense, compliance mandates, and best practices.
Work with Global CISO to establish a security & tech stack/roadmap to align strategies to the overall business and IT investment plan.
Partner with IT and the Business on projects to ensure an understanding of the business strategy and impacts on the enterprise security posture, architecture, technologies, etc.
Involvement in evaluating external cloud solutions and providers.
Remain current with new security threats, emerging technologies, risks, etc. to ensure proactive defense.
Level specific responsibilities:
Develops short- and/or long-range IS program plans consistent with the information needs and priorities of the functional group.
Develops and initiates programs that support functions and strategies of IS and the organization.
Performs the personnel management functions required to develop and maintain a qualified and motivated staff.
Reports, to Chief Information Security Officer, the status of programs and support activities.
Provides consultation and support to project groups and users in operating systems.
Has budget/financial accountability for functional area.
Knowledge, Skills, Abilities, and Competencies:
Strong analytical and interpretive skills to recognize and comprehend complex issues, policies, regulatory requirements, and industry information affecting AECOM.
Familiarity with security control frameworks and regulations (e.g., ISO, NIST, CIS, etc.)
BA/BS plus at least 12 years' combined experience in cyber/information security, network security, cloud security, security engineering or demonstrated equivalency of experience and/or education, including at least 4 years of leadership experience.
5+ years of leadership experience is preferred
Experience with AWS, Microsoft Azure, GCP and other cloud platform providers strongly preferred.
Extensive knowledge and experience architecting solutions specific to – SASE, ZTNA, SIEM, IDS/IPS, EDR, IAM, FIM, DLP, SOAR platforms, application controls, antivirus, firewalls, threat intel platforms, and other network and system solutions strongly preferred.
This position does not include sponsorship for US Work Authorization