Senior Security Architect, Technology Architecture

Guardian Life is seeking a Senior Security Architect to provide subject-matter expertise across all network security and encryption topics as it relates to both cloud and on-premises enterprise technology, and the relationship between these two architectural patterns.

You Will:

• Provide architectural and standard methodologies leadership related to the implementation of Cybersecurity controls in Cryptography and Key Management including PKI, Hardware Security Modules, IPSEC and TLS VPNs, Proxies and Firewalls, HIDS/NIDS/IPS, and Wi-Fi security.
• Research information on new, emerging technologies and methods in the security space and develop comprehensive security strategies for Encryption at-Rest/in-Transit, Post-Quantum Cryptography, Crypto Agility, Zero Trust, and Internet of Things (IoT).
• Work with various technology vendors to develop appropriate solutions exploring various deployment options such as cloud computing delivery models (IAAS, PAAS, and SAAS) and deployment models related to Public, Private and Hybrid Cloud service.
• Evaluate technologies and architectures used to protect information processing systems that contain sensitive data (e.g., HIPAA, PHI, PII, PFI, PCI), and recommend security controls and plans for remediation when required.
• Work closely with business and solution architects to ensure documented prescriptive blueprints and security standard methodologies are followed and enforced during app design and implementation.
• Evaluate emerging security tools and technologies that align to the vision and strategic goals and objectives on the Security organization.
• Provide timely reporting to executive management on collaboration and other updates.
• Communicate security risks and solutions to executive management, business partners and IT staff.
• Recommend security controls, plans for remediation, and evaluate inherent security characteristics of the technology and architectures used to protect high value assets and their interconnected systems.
• Work closely with Business and solution architects to ensure documented prescriptive blueprints and security standard processes are followed and implemented during app design and implementation.
• Evaluate emerging security tools and technologies that align to the vision and strategic goals and objectives of the Security organization.
• Provide timely reporting to executive management on partnership you're doing and other updates.
• Communicate security risks and solutions to executive management, business partners and IT staff.

You Have:

• Demonstrated ability in Cyber Security practices, to include a combination of:
• Minimum 7 years of security architecture knowledge and experience.
• 5 Years experience working with network communication protection technologies such as traditional Network Firewalls, Web Application Firewalls, VPNs, AWS Security Groups.
• Excellent written and verbal communications.
• Strong formal presentation abilities.
• Experience architecting solutions within Amazon Web Services (AWS). Experience with Microsoft Azure or Google Compute Cloud is a plus.
• In-depth and detailed knowledge of:
• Common network protocols such as DNS, BGP, HTTP, TLS, SSH, SMB, NFS
• Cryptography and Secrets Management
• Certificate Authorities / PKI, Digital Certificates, and Hardware Security Modules
• Domain Registration practices
• Security industry standards (NIST 800 series, OWASP, IETF RFCs, etc.) and associated standard processes
• Network Firewalls and VPNs
• SAFe Agile framework
• Familiarity with the following is a plus:
• Identity Governance and Provisioning
• Privilege Access Management
• Software Development Lifecycle and tools
• Windows, Red Hat Linux, IBM AIX
• Intrusion Detection and Incident Response
• Web Application Firewalls
• API security and modern open security standards for token-based authentication
• Preferred certifications include CISSP, CCNP, AWS, and especially SANS GIAC
• Bachelor’s degree in a STEM (Science, Technology, Engineering, Math) discipline preferred; Master’s degree desirable.

Location & Travel:

• Hybrid Remote - 2 Days a week at Guardian office in Bethlehem. PA, Holmdel, NJ, or New York, NY

Salary Range

The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.

Our Promise

At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals.  Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards.

Inspire Well-Being

As part of Guardian’s Purpose – to inspire well-being – we are committed to offering contemporary, supportive, flexible, and inclusive benefits and resources to our colleagues.

Health Care

• Choice of [high deductible/copay] medical plans* with prescription drugs, including coverage for fertility and transgender inclusive benefits

• Dental plan

• Vision plan

• Health care accounts – flexible spending, health reimbursement, and health savings accounts

• Critical illness insurance

Life and Disability Insurance

• Company-paid Life and Disability insurance plus voluntary supplemental coverage

• Accident insurance

Retirement and Financial

• 401(k) retirement plan with a company match, plus an annual age/service-based Company contribution and an annual profit-sharing contribution, if applicable

• Complimentary 1:1 financial guidance with a licensed Fidelity representative

Time Off and Remote Work

• Flexible work arrangements (part in-person/part remote)

• Unlimited paid time off for most roles plus time off for volunteering, jury duty, voting, and bereavement

• Personal holidays for colleagues to use in recognition of religious, cultural, or civic days

• Paid parental leave and paid family and medical leave policies

Emotional Well-being and Work-Life

• Emotional well-being, mental health, and work/life resources powered by Spring Health

• Wellness programs, including fitness program and equipment reimbursement

• Child, adult, and elder back-up care support through Bright Horizons

• Adoption assistance

• College planning

• Tuition reimbursement

• Student loan assistance

• Commuter benefits in select metropolitan areas

Justice, Equity, Diversity & Inclusion (J.E.D.I.)

• Employee Resource Groups that advocate for inclusion and diversity

• J.E.D.I. certification and training programs

• Matching gifts/volunteering

Benefits apply to full-time eligible employees. Interns are not eligible for most Company benefits.

Equal Employment Opportunity

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.

Accommodations

Guardian is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. Guardian also provides reasonable accommodations to qualified job applicants (and employees) to accommodate the individual's known limitations related to pregnancy, childbirth, or related medical conditions, unless doing so would create an undue hardship. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact applicant_accommodation@glic.com.