TE58P3 Security Architect

CAS uses intuitive technology, unparalleled scientific content, and unmatched human expertise to help companies create groundbreaking innovations that benefit the world. As the scientific information solutions division of the American Chemical Society, CAS manages the largest curated reservoir of scientific knowledge, and for 117 years, has helped innovators mine, assess and apply that information to keep businesses thriving. The CAS team is global, diverse, endlessly curious and strives to make scientific insights accessible to innovators worldwide.

CAS is currently seeking a Security Architect and Application Security Tester. This position will be located in our headquarters in Columbus, Ohio.

Position Summary:

This security architect supports both ACS and CAS as an enterprise function. The security architect will be expected to assess threats and vulnerabilities, analyze data and code, define measurable objectives, and drive implementations of security solutions for the security of the entire enterprise. The role is also responsible for defining/documenting security requirements, standards, patterns, reference architectures and decision trees to enable compliance with company policy and objectives. In addition to aiding in the architecture design/assessment process, this role will also be responsible for performing penetration tests when deemed necessary. Collaboration with business partners to review, assess, and collaborate to harden security controls is essential for success in this role.

Job Duties:

• Proactively works with partners and suppliers to achieve objectives on time and within budget. Takes appropriate actions, when necessary, with partners/suppliers to build enterprise class solutions, respond to issues/threats, and/or communicate to stakeholders all utilizing efficient and effective tools and techniques to mature enterprise information security.
• Monitor assigned security devices and systems to ensure high availability, optimum performance, and security.
• Assist with the day-to-day operational maintenance, support, and security upgrades.
• Assist system administrators with implementation of processes to achieve security standards and best practices to harden security posture.
• Follow established IT policies and procedures to ensure compliance of all assets within security's remit.
• Perform maintenance for systems outside of core support hours, as required.
• Follow industry and company best practices.
• Engage in penetration tests and security/risk assessment activities.
• Document security requirements, standards, patterns, and decision trees to enable compliance with company policy and objectives.
• Collaborate in implementation of security controls aligned to the Enterprise Information Security strategy.
• Actively engages in the greater information security and privacy community (e.g. peer groups, seminars, conferences, etc.) to help identify industry advancements, new techniques, and new partners. Demonstrates a positive, proactive and thought leadership attitude to CAS and the greater security community.
• Apply previous experience and proactive research to problem solve.
• Ability to document technical processes to ensure accuracy and sustainability of job-related processes.
• Demonstrate cross-functional collaboration with all levels of personnel to achieve organizational and Enterprise Information Security objectives.

Job Qualifications:

• Bachelor's degree in science or other Business domain; preferred
• 5+ years of professional experience in cyber security
• Industry certifications (CISSP, CEH, Security +, CRISC, CISM, etc.) preferred
• Working knowledge of multiple industry standard security domains
• Working knowledge of scripting (PowerShell, Python, etc.)
• Working knowledge of core network and systems administrator protocols
• Working knowledge of wireless network solutions
• Experience with and ability to implement security best practices
• Experience with security and governance, risk, and compliance tools
• Experience with Windows, Mac and Linux operating systems
• Able to work independently and as part of a team
• Strong interpersonal, written, and verbal communication skills
• Demonstrated experience working with a team to solve technical and process problems
• Ability to focus on and achieving results
• Demonstrated reliability and follow-through on commitments and assignments
• Demonstrate professionalism and courtesy in all interactions
• Demonstrated ability to implement security best practices
• Work well under pressure (i.e. a critical system is down)
• Ability to manage multiple tasks in a given timeframe

CAS offers a competitive salary and comprehensive benefits package, including a generous vacation plan, medical, dental, vision insurance plans, and employee savings and retirement plans. Candidates for this position must be authorized to work in the United States and not require work authorization sponsorship by our company for this position now or in the future. EEO/Minority/Female/Disabled/Veteran.